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Description 

[0001] The present invention relates to a portable 
computer system having a security function for confirm- 
ing that the operator is an authorized user. 
[0002] Recently, personal computers have been re- 
duced in size and weight to be more easily portable, and 
enhanced in performance and functions. Particularly, 
laptop type personal computers driven by a battery and 
having a large capacity memory such as a Hard Disk 
Drive (HDD), a RAM pack, and further a card interface, 
for example, of Personal Computer Memory Card Inter- 
national Association (PCMCIA) cards are widely popu- 
lar. 

[0003] The most advantageous feature of these per- 
sonal computers resides in that everyone can easily use 
them by a simple operation irrespective of a place. On 
the other hand, wide spread of the personal computers 
tends to increase the opportunity of processing secret 
information. Therefore, sufficient consideration is re- 
quired with regard to the security function. 
[0004] Conventionally, the security function is real- 
ized by programming the computer to check a password 
input by the operator each time the power source is 
switched on. In this password check, inputting of a pass- 
word is requested immediately after start of power sup- 
ply, and then it is checked whether the input password 
coincides with a password previously registered. When 
coincidence is detected therebetween, the personal 
computer becomes active to start a data processing cor- 
responding to an instruction input by the operator. 
[0005] However, the conventional security function 
has the following drawbacks. 

(a) In a case where the personal computer incorpo- 
rates a hard disk storing secret information, anyone 
of authorized users can obtain the information by 
instructing the computer to access the hard disk. 
This bothers a restricted number of the authorized 
users who take responsibility for the management 
of the secret information. Further, if there are many 
authorized users who knows the password, there is 
a possibility that an unauthorized user easily gets 
the password from one of them. 

(b) The aforementioned personal computer gener- 
ally includes a CPU for controlling the system oper- 
ation, a password memory for storing a registered 
password, and a system bus connected between 
the CPU and the password memory. The CPU ac- 
cesses the password memory via the system bus 
to read the registered password stored in the pass- 
word memory. Therefore, there is a possibility that 
an unauthorized user gets the registered password 
from the password memory by an unacceptable ac- 
cess method. 

(c) Some of the personal computers has a resume 
function in which a data processing is interrupted 
after the main power source is switched off, and re- 



started from the interrupted point after the main 
power source is switched on. In a case where an 
operator has switched off the main power source 
after setting a mode of the resume function to leave 

5 the computer, a display stops to display the display 
data stored in a video RAM. At this time, a backup 
power is supplied to the video RAM and the video 
RAM maintains the display data under the backup 
power. When the main power source is switched on, 

10 the display starts to display the display data stored 
in the video RAM. At this time, a password-input 
window is displayed on a part of the display screen. 
Therefore, anyone can obtain information concern- 
ing the interrupted data processing from the display 

15 data displayed in the background of the password- 
input window. In other words, an unauthorized user 
can obtain the information without inputting any 
password. 

(d) Some of the personal computers has an instant 
20 security function such as an operation lock function 
in which display and keyboard operations are 
locked without interrupting the data processing. To 
unlock the operations, it is necessary to input a 
password is identical to that accepted in the pass- 
es word checking effected at the time of power-on. In 
this power-on password checking, if a wrong pass- 
word has been input, for example, more than two 
times, inputting of the next password is generally 
rejected for at least a preset period of time thereaf- 
30 ter. If the password is simplified to facilitate the un- 
locking, the reliability of the security function will be 
lowered. In addition, the number of times a wrong 
password is input is not counted in the operation 
lock password checking, since this checking is ef- 
35 fected after the operator is detected to be an au- 
thorized user in the power-on password checking. 
Therefore, it is possible for an unauthorized user to 
find the registered password by repeatedly inputting 
a password selected at random. 
40 (e) Assume that an operator left the computer after 
setting a mode of the resume function and switching 
off the main power source. The interrupted data 
processing will be restarted when a password indi- 
cating an authorized user is input after the main 
45 power source is switched on. However, if the pass- 
word is input by another unfamiliar operator, this op- 
erator may cause the restarted data processing to 
be in a state that the operator who left the computer 
cannot continue his or her job. 

so 

[0006] An object of the present invention is to provide 
a portable computer system which can improve the re- 
liability of its security function. 

[0007] US-51 20939 discloses a computer system ac- 
55 cording to the precharacterizing part of claim 1 . Accord- 
ing to this document a processor controls the operation 
of smart card to perform data processing. The memory 
holds one or more registered passwords, and the proc- 
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essor checks whether a password input by the user in- 
terface coincides with anyone of the registered pass- 
words held in the memory. Upon detection of coinci- 
dence, the data processing is allowed. Although the reg- 
istered password comprises a plurality of binary digits 5 
not accessable from outside, this feature is simply de- 
rived because no connection terminals for the smart 
card are assigned to a system bus connected to the 
processor. 

[0008] Furthermore, the smart card of this document 
is used by an authorized person and connected to a 
reader/write unit when the authorized person requires a 
door to be open. Therefore, it is not necessary to prevent 
unauthorized access from the processor to the memory. 
[0009] Additionally, US-4672572 discloses a detec- 
tion means for more communication between terminals 
and host computers. The detection means includes user 
authentification, access control command filtering, audit 
trail recording, audit trail analysis, interrogation, and 
cryptographic services. 

[0010] According to the present invention the above 
object is achieved by a computer system according to 
claim 1 . The dependent claims are related to further ad- 
vantageous aspects of the present invention. 
[001 1] According to a first aspect of the present inven- 
tion, there is provided a portable computer system which 
comprises: an input section for inputting at least a pass- 
word; a main processor section for controlling the oper- 
ation of the system to perform a data processing; and a 
password control section, holding one or more regis- 
tered passwords as being unreadable by direct access 
from the main processor section, for allowing the main 
processor section to perform the data processing when 
a password identical to one of the registered passwords 
held therein is input by the input section. 
[0012] According to a second aspect of the present 
invention, there is provided a portable computer system 
which comprises: an input section for inputting at least 
a password; a main processor section for controlling the 
operation of the system to perform a data processing; 
and a password control section, holding one or more 
registered passwords as being unreadable by direct ac- 
cess from the main processor section, for allowing the 
main processor section to perform the data processing 
when a password identical to one of the registered pass- 
words held therein is input by the input section, wherein 
the password control section includes a restricting sec- 
tion for restricting a functional range of the data process- 
ing based on the type of the registered password which 
coincides with the input password. 
[0013] According to a third aspect of the present in- 
vention, there is provided a portable computer system 
which comprises an input section for inputting at least a 
password; a main processor section for controlling the 
operation of the system to perform a data processing; 
and a password control section, holding one or more 
registered passwords as being unreadable by direct ac- 
cess from the main processor section, for allowing the 



main processor section to perform the data processing 
when a password identical to one of the registered pass- 
words held therein is input by the input section, wherein 
the password control section includes a non-volatile 
password memory for storing one or more registered 
passwords, and a password checking section for check- 
ing whether the input password coincides with any one 
of the registered passwords stored in the password 
memory, the main processor section is connected to the 
password checking section via a system bus, and the 
password checking section is connected to the pass- 
word memory via a memory bus independent of the sys- 
tem bus to hide the password memory from the main 
processor section. 

[0014] According to a fourth aspect of the present in- 
vention, there is provided a portable computer system 
which comprises an input section for inputting at least a 
password; a main processor section for controlling the 
operation of the system to perform a data processing; a 
password control section, holding one or more regis- 
tered passwords as being unreadable by direct access 
from the main processor section, for allowing the main 
processor section to perform the data processing when 
a password identical to one of the registered passwords 
held therein is input by the input section; a secondary 
power-supported display memory, for storing display 
data produced by the main processor section; a display 
for displaying the display data stored in the display 
memory; and a secondary power-supported system 
memory, for storing processing state data obtained 
when the data processing is interrupted, wherein the 
password control section includes a nonvolatile pass- 
word memory for storing one or more registered pass- 
words, and a password checking section for checking 
whether the input password coincides with any one of 
the registered passwords stored in the password mem- 
ory, and the main processor section includes a setup 
section for setting up a system configuration with re- 
spect to available functional modes and hardware re- 
sources, a suspension section for interrupting the data 
processing and saving the processing state data in the 
system memory when a main power source is switched 
off in a resume mode, a resume section for restoring the 
saved processing state data when the main power 
source is switched on in the resume mode, and a display 
inhibiting section for inhibiting the display data stored in 
the display memory from being displayed before the da- 
ta processing is permitted by the password control sec- 
tion. 

[0015] According to a fifth aspect of the present inven- 
tion, there is provided a portable computer system which 
comprises: an input section for inputting at least a pass- 
word; a main processor section for controlling the oper- 
ation of the system to perform a data processing; and a 
password control section, holding one or more regis- 
tered passwords as being unreadable by direct access 
from the main processor section, for allowing the main 
processor section to perform the data processing when 
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a password identical to one of the registered passwords 
held therein is input by the input section, wherein the 
main processor section includes an operation lock sec- 
tion for locking and unlocking the operations of the input 
section and other predetermined hardware resources 5 
during the data processing, the inputting of a password 
is excepted from the operation lock on the input section, 
and the password control section holds one or more sec- 
ond registered passwords in addition to the first regis- 
tered passwords to allow the unlocking of the locked op- 10 
erations when a password identical to one of the second 
registered passwords is input by the input section during 
the operation lock. 

[0016] According to a sixth aspect of the present in- 
vention, there is provided a portable computer system is 
which comprises: an input section for inputting at least 
a password; a main processor section for controlling the 
operation of the system to perform a data processing; a 
password control section, holding one or more regis- 
tered passwords as being unreadable by direct access 20 
from the main processor section, for allowing the main 
processor section to perform the data processing when 
a password identical to one of the registered passwords 
held therein is input by the input section; and a second- 
ary power-supported system memory, for storing 25 
processing state data obtained when the data process- 
ing is interrupted, wherein the password control section 
includes a nonvolatile password memory for storing one 
or more registered passwords, and a password check- 
ing section for checking whether the input password co- 30 
incides with any one of the registered passwords stored 
in the password memory, and the main processor sec- 
tion includes a setup section for setting up a system con- 
figuration with respect to available functional modes and 
hardware resources, a supply section for supplying a 35 
password checking request to the password checking 
section when a power source is switched on in a power- 
on password check mode, a suspension section for in- 
terrupting the data processing and saving the registered 
password which is detected to coincide with an input *o 
password during the password checking necessary for 
allowing the data processing to proceed, along with the 
processing state data in the system memory when a 
main power source is switched off in a resume mode, 
and resume means for restoring the saved processing 45 
state data when the main power source is switched on 
in the resume mode, and the password checking means 
includes checking section for checking whether an input 
password coincides with the registered password saved 
in the system memory, when a password checking re- so 
quest is supplied from the main processor section in the 
resume mode. 

[0017] According to the invention, it becomes more 
difficult for unauthorized users to obtain secret informa- 
tion from the computer system. Therefore, the reliability ss 
of the security function can be improved. 
[0018] The embodiments of the invention in which an 
exclusive property or privilege is claimed are defined as 



Fig. 1 A is a block diagram showing a first essential 
construction of a portable computer according to 
one embodiment of the present invention; 
Fig. 1 B is a diagram showing an example of various 
passwords and 'access rights' data provided ac- 
cording to types of the passwords; 
Fig. 2 is a block diagram showing the whole system 
construction of the portable computer; 
Fig. 3 is a block diagram showing a main portion of 
the portable computer computer shown in Fig. 2; 
Fig. 4 is a block diagram showing an internal con- 
struction of a PCMCIA gate array shown in Figs. 2 
and 3; 

Fig. 5 is a diagram for explaining the passwords and 
'access right 1 data stored in an EEPROM shown in 
Figs. 2 and 3; 

Fig. 6 is a memory map of the EEPROM shown in 
Figs. 2 and 3; 

Fig. 7 is a diagram showing a control logic circuit 
which operates according to the 'access right' data 
stored in a security register of the PCMCIA gate ar- 
ray shown in Figs. 2 to 4; 

Figs. 8A and 8B are flowcharts for explaining proc- 
esses which a CPU and keyboard controller shown 
in Fig. 2 perform in a power-on password check 
mode, respectively; 

Fig. 9 is a flowchart for explaining a power-on pass- 
word checking process performed by the keyboard 
controller in the power-on password check mode in 
a case where 'access right' data are stored with 
passwords in the EEPROM shown in Figs. 2 and 3; 
Fig. 1 0 is a block diagram showing a second essen- 
tial construction of the portable computer shown in 
Fig. 2; 

Fig. 1 1 A is a block diagram showing a third essential 
construction of the portable computer shown in Fig. 
2; 

Fig. 1 1 B is a memory map of a video memory shown 
in Fig. 2; 

Fig. 1 2 is a block diagram showing a fourth essential 
construction of the portable computer shown in Fig. 

2; 

Fig. 1 3 is a flowchart for explaining an operation un- 
locking process performed by the keyboard control- 
ler; 

Fig. 14 is a block diagram showing a fifth essential 
construction of the portable computer shown in Fig. 
2; and 

Figs. 15 and 16 are flowcharts for explaining proc- 
esses which the CPU and keyboard controller per- 
form in a combination of the resume mode and the 
power-on password check mode, respectively. 

[0019] A portable computer according to one embod- 
iment of the present invention will be described below 
with reference to the drawings. 
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[0020] Fig. 1 A is a block diagram showing an essen- 
tial construction of the portable computer. 
[0021] This portable computer includes password 
memory means 2A for storing a plurality of registered 
passwords along with 'access right' data assigned to the 
registered passwords, and password control means 1 A 
for checking whether an input password coincides with 
registered passwords. Registering, deleting, and updat- 
ing of passwords and access right data are effected un- 
der the control of the password control means 1 A. The 
password control means 1 A has a function of retrieving 
from the password memory means 2A the access right 
data assigned to the registered password which is de- 
tected to coincide with the input password, and chang- 
ing the setup system configuration with respect to hard- 
ware resources provided in the personal computer. 
[0022] More specifically, the password control means 
1 A responds to a password control command generated 
in a setup process or generated as a MS-DOS com- 
mand in order to perform its control operation. When 
registration of passwords is requested by the password 
control command, input passwords and input access 
right data assigned to the input passwords are stored in 
the password memory means 2A. In a case where the 
password memory means 2A has memory areas storing 
six pairs of passwords and access right data, two mem- 
ory areas are provided for maintenance passwords and 
four memory areas are provided for four user pass- 
words, for example. The access right data assigned to 
the user password represents a device access right 
which permits access to peripheral devices selected 
from the available hardware resources, and the access 
right data assigned to the maintenance password rep- 
resents a system access right which permits access to 
the peripheral devices and other available hardware re- 
sources. 

[0023] Further, when checking of an input password 
is requested by the password control command, the 
password control means 1A checks whether an input 
password coincides with any one of the registered pass- 
word stored in the password memory means 2A to de- 
termine the validity of the input password. After detect- 
ing the validity of the input password, the password con- 
trol means 1 A controls a hardware control section based 
on the access right data assigned to the registered pass- 
word which is detected to coincide with the input pass- 
word. If the detected password is a user password, the 
hardware control section selectively enables accessing 
of the various peripheral devices such as an HDD, an 
FDD, a serial port, a printer port, a PCMCIA specification 
card, and the like. On the other hand, if the detected 
password is a maintenance password, the hardware 
control section selectively enables accessing of the 
aforementioned peripheral device and other hardware 
resources such as a flash memory for storing a BIOS 
program, the password memory means 2A, and the like. 
[0024] In the personal computer described above, a 
plurality of passwords are provided for hardware main- 



tenance persons and users as shown in Fig. 1 B, and a 
functional range of the data processing is restricted 
when the input password coincides with a user pass- 
word. On the other hand, the functional range is not re- 
s stricted when the input password coincides with a main- 
tenance password. Thus, the maintenance is facilitated 
and the reliability of the security function can be im- 
proved. 

[0025] The detailed construction of the portable com- 

10 puter will be described beiow. 

[0026] Fig. 2 shows the whole system construction of 
the portable computer, Fig. 3 shows a main portion of 
the portable computer computer, and Fig. 4 shows an 
internal construction of a PCMCIA gate array shown in 

15 Figs. 2 and 3. 

[0027] In Fig. 2, the password control means 1A 
shown in Fig. 1A is realized by a keyboard controller 
(KBC) 30 and a register group provided in a PCMCIA 
gate array (PCMCIA-GA) 28. The password memory 

20 means 2A is realized by an EEPROM 29 coupled to the 
keyboard controller (KBC) 30 through the PCMCIA gate 
array (PCMCIA-GA) 28. In this computer, a command 
and its parameter from a CPU 21 to the keyboard con- 
troller (KBC) 30 and a response (data/status) from the 

25 keyboard controller (KBC) 30 to the CPU 21 are trans- 
ferred via data communication registers in a status LCD 
control gate array (SLCDC-GA) 26. Data and address 
are transferred from the PCMCIA gate array (PCM- 
CIA-GA) 28 to the EEPROM 29 via a memory bus 1 5. 

30 [0028] This portable computer is of a laptop type or 
notebook type personal computer, and has a system 
bus (ISA-BUS) 11 of an ISA (Industry Standard Archi- 
tecture) specification, a high speed graphic transfer pe- 
ripheral interface bus (PI-BUS: Peripheral Interface 

35 BUS) 12, a keyboard interface bus (KBC-BUS) 13 and 
a power source interface bus (PSC-BUS) 14. 
[0029] The CPU 21 and an I/O controller (l/O-CONT) 
22 are connected to the system bus (ISA-BUS) 11 . The 
CPU 21 and the I/O controller 22 are respectively 

40 formed of a microprocessor 80386SL and its family chip 
82360SL manufactured and sold by Intel Co. (in the 
USA). 

[0030] The overall system is controlled by the CPU 21 
to perform a data processing corresponding to the pro- 

45 gram stored in a system memory 23. The CPU 21 per- 
forms an initializing process (IRT process), a resuming 
process, and an operation unlocking process after the 
system power source is switched on. In the processes, 
password control commands (a power-on password 

so status command, a power-on password mode com- 
mand, an operation lock password status command, an 
operation lock password mode command, etc.) are is- 
sued from the CPU 21 and sent to the keyboard control- 
ler (KBC) 30 via data communication register (CR) of 

55 the status LCD control gate array (SLCDC-GA) 26 
shown in Fig. 3. The details of the password control 
command will be described later. 
[0031] The CPU 21 sends a password registration 
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verify command (power-on password status command) 
to the keyboard controller (KBC) 30 via the data com- 
munication register (CR) of the status LCD control gate 
array (SLCDC-GA) 26 shown in Fig. 3 in the initialization 
process (IRT process) at the time of system power-on. 5 
When the registration of the passwords (the number of 
registered passwords * 0) is verified by a response con- 
tent (the number of registered passwords) from the key- 
board controller (KBC) 30 upon issuing of the command, 
password input message data is sent to a VGA control- 
ler 32 by the BIOS calling to display a password input 
requesting message on an LCD pane! 49, and the pow- 
er-on password mode command is also sent to the key- 
board controller (KBC) 30 via the data communication 
register (CR) of the status LCD control gate array 
(SLCDC-GA) 26. Then, completion of inputting of the 
passwords is waited. 

[0032] Upon receipt of the password registration ver- 
ify command from the CPU 21 , the keyboard controller 
(KBC) 30 returns the number of the registered pass- 
words as a response to the CPU 21 . Further, upon re- 
ceipt of the power-on password command, the keyboard 
controller (KBC) 30 checks whether an input password 
coincides with any one of the registered passwords 
stored in the EEPROM 29, and returns one of an ACK 
code and a RESEND code. The ACK code is returned 
when it is detected that the input password coincides 
with one of the registered passwords and a RESEND 
code is returned when it is detected that the input pass- 
word does not coincide with any one of the registered 
passwords. The ACK code includes data representing 
the coincident password location in the EEPROM 29 
and a status "OOh". The RESEND code includes data 
"FFh" and status "01 h" representing that no coincident 
password exists. After returning an ACK code or RE- 
SEND code, the keyboard controller (KBC) 30 finishes 
the aforementioned password control command proc- 
ess. 

[0033] When a hot key (Fn + Fl) is operated during a 
normal data processing, an SMI interruption is supplied 
to the CPU 21 via the data communication register (CR) 
of the status LCD control gate array (SLCDC-GA) 26, 
as an operation lock designating signal. Upon receipt of 
the SMI interruption, the CPU 21 issues an operation 
lock password mode command to a power supply con- 
troller (PSC) 46 and the keyboard controller (KBC) 30 
via the data communication register (CR) of the status 
LCD control gate array (SLCDC-GA) 26. In response to 
the mode command, the keyboard controller (KBC) 30 
inhibits transmission of a scan code (or key input data) 
to the CPU 21. The power supply controller (PSC) 46 
stops the power supplied to the display 49. Control of 
an operation lock is performed in this way. In the oper- 
ation lock, input signals from a keyboard 51 and a 
mouse are ignored, and all the display data on the 
screen is cleared. 

[0034] This operation lock can be unlocked by input- 
ting an operation password from the keyboard 51. The 



keyboard controller 30 performs a password checking 
on the input password to supply an unlock designating 
signal. The password checking is started when a special 
function key (e.g., "Enter 0 key) is detected to be operat- 
ed after a string of the password characters is input from 
the keyboard (KB) 51 . In the password check, the key- 
board controller (KBC) 30 checks whether the input 
password coincides with any one of the registered pass- 
words stored in the EEPROM 29, and transmits to the 
CPU 21 an unlock code when absence of registered 
passwords or the coincidence is detected. When the co- 
incidence is detected, the unlock code includes data 
representing the coincident password location in the 
EEPROM 29 and status "OOh". When absence of regis- 
tered passwords is detected, the unlock code includes 
data "OOh" and status "OOh". Thereafter, the keyboard 
controller 30 performs a normal key-inputting process. 
The CPU 21 unlocks the operation lock in response to 
the unlock code. That is, the CPU 21 sends the opera- 
tion lock unlocking command to the power supply con- 
troller (PSC) 46 and the keyboard controller (KBC) 30 
via the data communication register (CR) of the status 
LCD control gate array (SLCDC-GA) 26, restarts input 
receiving of the keyboard, the mouse, and causes the 
display data to be displayed on a screen again. 
[0035] The CPU 21 has a power managing function 
for low power consumption to reduce power of various 
I/O at the time of idling. The power managing function 
is enabled by an interruption known as a "System Man- 
agement Interrupt (SMI)". 

[0036] The interruption of the CPU 21 includes, in ad- 
dition to the SMI, a Non-Maskable Interrupt (NMI) and 
a Maskable Interrupt (INTR). 

[0037] The SMI is one type of the non-maskable in- 
terrupt, a hardware interrupt of highest priority higher 
than the above-described NMI and the INTR, and start- 
ed by enabling for the interrupt request input SMI of the 
CPU 21. Similarly, the non-maskable interrupt and the 
maskable interrupt can be started by enabling interrupt 
requests of NMI, INTR (not shown) input to the CPU 21 . 
[0038] The interruption by the SMI is used not only for 
enabling the function of the operation lock by the above- 
described hot key operation but also for enabling the 
process regarding other hot key operation or the proc- 
ess for power management. 

[0039] The I/O controller 22 is a special-purpose logic 
for realizing CPU and memory support functions, and 
controls an I/O device to be connected to a serial port 
41 and an external printer to be connected to a printer 
port (EPP: Enhanced Printer Port) 43. The I/O controller 
22 includes two DMA controllers for controlling a direct 
memory access, two interrupt controllers (PIC: Pro- 
grammable Interrupt Controller), two timers (PIT: Pro- 
grammable Interrupt Timer), two serial I/O controllers 
(SIO: Serial Input/Output Controller) and one real time 
clock (RTC: Real Time Clock). The real time clock is a 
timepiece module having a battery for its operation and 
has a static RAM (hereinafter referred to as a "CMOS 
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memory") of a CMOS type to which power is always sup- 
plied from the battery. This CMOS memory is used for 
storing various data such as data indicating the system 
configuration setup with respect to the available func- 
tional modes and hardware resources of the computer 5 
system. 

[0040] A communication between the CPU 21 and the 
I/O controller 22 is performed via the system bus 
(ISA-BUS) 11 or special-purpose interface lines provid- 
ed between the CPU 21 and the I/O controller 2. Inter- 
face signals between the CPU 21 and the I/O controller 
22 include, for example, a signal for controlling the SMI 
function of the CPU 21. 

[0041] More particularly, an active row SMI signal 
from the I/O controller 22 or the status LCD control gate 
array (SLCDC-GA) 26 is supplied to the interrupt re- 
quest input SMI of the CPU 21 via an AND gate Gl. The 
SMI signal from the status LCD control gate array 
(SLCDC-GA) 26 is generated for requesting the CPU 21 
to perform a hot key process to be described later. The 
SMI signal from the I/O controller 22 is generated when 
power reduction of I/O devices is detected to be neces- 
sary on the basis of an elapse of time monitored by a 
timer, for example. 

[0042] The hot keys are keys which can directly re- 
questing special functions such as a setup function in 
which the CPU 21 sets and alters a system configuration 
with respect to the available functional modes and hard- 
ware resources. Several keys on the keyboard 51 are 
assigned to the hot keys. The CPU 21 is enabled to per- 
form a hot key process for the setup function immedi- 
ately after a corresponding hot key is operated. In this 
hot key process, normal transmission in which key data 
is transmitted via the system bus (ISA-BUS) 11 is disa- 
bled. Instead, the SMI is issued to the CPU 21 so that 
key data indicating a hot key operation is rapidly trans- 
mitted to the CPU 21 via the keyboard interface bus 
(KBC-BUS) 13 and the status LCD control gate array 
(SLCDC-GA). 

[0043] The CPU 21 includes a power save mode 
switching function, a resume/boot mode switching func- 
tion, an LCD/CRT display switching function, and an 
LCD panel black/white inversion display function, each 
of which can be called by hot keys. These functions are 
defined by various routines included in a Basic Input and 
Output System program stored in the BIOS-ROM 25. 
The various routines are selected in a hot keying routine 
which is executed in response to the SMI. Since the hot 
keying routine is a memory resident type program, a 
function corresponding to the depressed hot key can be 
immediately called even during active execution of an 
application program. In this case, it does not affect any 
influence to the active execution of the application pro- 
gram. 

[0044] Hot keys can be operated to directly call func- 
tions of the keyboard controller (KBC) 30, the power 
supply controller (PSC) 46, the PCMCIA gate array (PC- 
MCIA-GA) 28, and the hardware other than the CPU 21 . 



The keyboard controller (KBC) 30 has a function of set- 
ting an "Arrow" mode in which some keys are overlaid 
on the arrow keys in the keyboard 51 , a function of set- 
ting a "Numeric" mode in which some keys are overlaid 
on the ten-keys on the keyboard 51 , and a function of 
setting a "Scroll Lock" mode. The power supply control- 
ler (PSC) 46 has a function of regulating the contrast 
and intensity of the LCD panel 49, and a function of con- 
trolling the volume of a speaker (not shown). The PCM- 
CIA gate array (PCMCIA-GA) 28 has a function of lock- 
ing and unlocking the operations of the available hard- 
ware resources, as an "instant security" function. 
[0045] The local bus of the CPU 21 is connected to 
the system memory 23 and a DRAM card 24 of an op- 
tion. The system memory 23 serves as a main memory 
in the computer system and stores an application pro- 
gram and data to be processed. The system memory 23 
has a storage capacity of 4M bytes as a standard. The 
DRAM card 24 serves as an extended memory in this 
computer system, and optionally connected to a special- 
purpose card slot of 88 pins provided at the computer 
body. The DRAM card 24 has a storage capacity select- 
ed from 2M bytes, 4M bytes, 8M bytes and 16M bytes. 
[0046] The system bus (ISA-BUS) 11 is connected to 
the BIOS-ROM 25. The BIOS-ROM 25 stores a Basic 
Input and Output System program and formed of a flash 
memory (FLASH MEM) so that the BIOS program can 
be modified. The BIOS program includes a routine for 
initializing at the time of power-on, a driver routine for 
controlling various input/output devices, routines for 
performing processes concerning the hot key opera- 
tions, and the like. 

[0047] The flash memory (FLASH MEM) serving as 
the BIOS-ROM 25 can be initialized only when a main- 
tenance privilege is set as an access right in the security 
register of the PCMCIA gate array (PCMCIA-GA) 28, 
and the control will be described later. 
[0048] The system bus (ISA-BUS) is connected to the 
status LCD control gate array (SLCDC-GA) 26, a floppy 
disk controller (FDC) 27, the PCMCIA gate array (PC- 
MCIA-GA) 28, the keyboard controller (KBC) 30, an ex- 
tended connector 31 detachable with an extended unit 
(Desk Station), and a hard disk drive (HDD) 42. 
[0049] The status LCD control gate array 
(SLCDC-GA) 26 performs the display control of a status 
LCD 44, a communication with the keyboard controller 
(KBC) 30, and a communication with the power supply 
controller (PSC) 46. The status LCD control gate array 
(SLCDC-GA) 26 causes the status LCD 44 to display a 
battery residual operating time, various operation envi- 
ronmental states which can be set and altered in a hot 
key process. The status LCD 44 is a dedicated liquid 
crystal display used for displaying the battery residual 
operating time, and the various operation environmental 
states. 

[0050] The PCMCIA gate array (PCMCIA-GA) 28 
controls an access to the 68-pin PCMCIA (Personal 
Computer Memory Card International Association) card 
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to be optionally mounted in slots A, B of a PCMCIA port 
48 and a communication with the keyboard controller 
(KBC) 30. The PCMCIA gate array (PCMCIA-GA) 28 in- 
cludes a logic circuit serving as an interface with the 
EEPROM 29 in which registered passwords are stored, 
and a logic circuit which operates to assure the security 
function. The concrete configuration of the PCMCIA 
gate array (PCMCIA-GA) 28 will be described later with 
reference to Figs. 3 and 4. 

[0051] The two slots A, B of the PCMCIA port 48 are 
connected to the PCMCIA gate array (PCMCIA-GA) 28. 
The slot A supports all types of PCMCIA cards (a thick 
type of 1 8 mm thick, a type 3 of 1 0.5 mm thick, a type 2 
of 5.0 mm thick and a type 1 of 3.3 mm thick), and the 
slot B supports the PCMCIA cards of types 1 and 2. In 
this case, the small PCMCIA card of 5.0 mm thick or 3.3 
mm thick is used for the security card. 
[0052] The PCMCIA gate array (PCMCIA-GA) 28 has 
a security function for checking whether a password 
read from the security card of a PCMCIA specification 
coincides with any one of the registered passwords 
stored in the EEPROM 29 and allowing the system to 
start only when the coincidence is detected. 
[0053] The PCMCIA gate array (PCMCIA-GA) 28 also 
has an instant security function for locking and unlocking 
the operations of hardware resources. This instant se- 
curity function is realized by executing deenergization 
of a display screen of the LCD panel 49 and a key lock 
of the keyboard 51 in response to a designation upon 
operation of predetermined hot keys (Fn + Fl) from the 
keyboard controller (KBC) 30. 
[0054] The PCMCIA gate array (PCMCIA-GA) 28 per- 
forms a communication with the keyboard controller 
(KBC) 30 via the keyboard interface bus (KBC-BUS) 1 3 
so as to receive a command of the hot key (Fn +fl) op- 
eration. 

[0055] The communication between between the sta- 
tus LCD control gate array (SLCDC-GA) 26 and the key- 
board controller (KBC) 30 and the communication be- 
tween the PCMCIA gate array (PCMCIA-GA) 28 and the 
keyboard controller (KBC) 30 is effected via the key- 
board interface bus (KBC-BUS) 13 so that various con- 
trol data can be quickly transferred between the CPU 
21 and the keyboard controller (KBC) 30. 
[0056] More particularly, the status LCD control gate 
(SLCDC-GA) 26 includes a group of I/O registers for 
holding control data to be transferred between the CPU 
21 and the keyboard controller (KBC) 30. The keyboard 
controller (KBC) 30 accesses the register group via the 
keyboard interface bus (KBC-BUS) 1 3. The CPU 21 ac- 
cesses the register group via the system bus 11. The 
register group includes the data communication register 
(CR), a register having a bit for supplying an SMI signal 
to an AND gate Gl, a hot key register for storing hot key 
data transmitted from the keyboard controller (KBC) 30. 
[0057] The keyboard controller (KBC) 30 controls the 
internal keyboard (KB) 51 of a standard facility associ- 
ated in the computer body, scans a matrix of the keys in 



the keyboard 51 to receive a signal corresponding to a 
pressed key, and converts the signal into a predeter- 
mined key code. In this case, the key code correspond- 
ing to the hot key provided on the keyboard 51 is trans- 
5 mitted to the status LCD control gate array (SLCDC-GA) 
26 via the keyboard interface bus (KBC-BUS) 13. On 
the other hand, the other keys except the hot keys are 
transmitted to the CPU 21 by a hand-shake type serial 
communication via the system bus (ISA-BUS) 11 as 
usual. The keyboard controller (KBC) 30 also has a 
function of controlling a mouse 52, an external keyboard 
53, and the like to be optionally connected. 
[0058] The keyboard controller (KBC) 30 serves as a 
processor for realizing a security function. 
[0059] The keyboard controller (KBC) 30 has a pass- 
word control function of executing various password 
control commands from the CPU 21 and transmitting a 
response to the CPU 21 as a result of the execution. In 
the execution of the password control commands, the 
keyboard controller (KBC) 30 controls an access to the 
password memory 29 so as to register, update, and de- 
lete power-on passwords, access right data, and oper- 
ation passwords in the password memory 29 and to per- 
form a password checking in which a password input by 
the keyboard 51 is compared with the power-on pass- 
words or the operation passwords. 
[0060] The communication between the status LCD 
control gate array (SLCDC-GA) 26 and the power sup- 
ply controller (PSC) 46 is effected via the power supply 
interface bus (PSC-BUS) 14 so that various control sig- 
nals can be quickly transferred between the CPU 21 and 
the power supply controller (PSC) 46. That is, the status 
LCD control gate array (SLCDC-GA) 26 includes, as de- 
scribed above, a group of the I/O registers including a 
data communication register (CR) for storing control da- 
ta to be communicated between the CPU 21 and the 
power supply controller (PSC) 46. The power supply 
controller (PSC) 46 accesses the register group via the 
power supply interface bus (PSC-BUS) 1 4. The CPU 21 
accesses the register group via the system bus 1 1 . The 
hot key process of the power supply controller (PSC) 46 
is enabled by reading key data stored in the hot register 
of the status LCD control gate array (SLCDC-GA) 26 via 
the power supply interface bus (PSC-BUS) 14. 
[0061] The floppy disk controller (FDC) 27 controls a 
dual mode floppy disk drive (FDD) 45 for driving a 
3.5-inch disk of 750K or 1 .44M bytes, and includes a 
variable frequency oscillator (VFO). 
[0062] The extended unit (Desk Station) can be con- 
nected to an extended connector 31 . Various extended 
boards such as a communication board are mounted in 
the extended unit to extend functions. The hard disk 
drive (HDD) 42 includes an IDE (Integrated Drive Elec- 
tronics) interface, and is controlled to be accessed di- 
rectly by the CPU 21. The hard disk drive (HDD) 42 
drives a 2.5-inch hard disk having a storage capacity of 
120M or 200M bytes. 

[0063] The peripheral interface bus (PI-BUS) 12 is 
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connected to the display controller (hereinafter referred 
to as a "VGA controller") 32 prepared according to VGA 
(Video Graphic Array) specification. The VGA controller 
32 controls a standard monochrome/color LCD panel 49 
of a back-lighting type and an optional color CRT 50. A 5 
video memory (VRAM) 33 stores video data transferred 
from the CPU 21 via the peripheral interface bus 
(PI-BUS) 12 to the VGA controller 32. Since the system 
bus (ISA-BUS) 11 is not used for transferring the video 
data, performance of the system is not reduced at this 
time. Intensity and contract of the LCD panel 49 can be 
adjusted by the hot key operation in the keyboard 51 . 
[0064] Further, this system also includes the power 
supply controller (PSC) 46 and a power supply circuit 
(PS) 47. The power supply controller (PSC) 46 controls 
a power source voltage supplied from the power supply 
circuit 47 to each unit in accordance with a command 
from the CPU 21 , and performs a communication to the 
CPU 21 via the power supply interface bus (PSC-BUS) 
14 and the data communication register (CR) of the sta- 
tus LCD control gate array (SLCDC-GA) 26. The power 
supply controller (PSC) 46 performs a hot key process 
for adjusting the intensity and contrast of the LCD panel 
49, the volume of a speaker, and the like according to 
key data set in the hot key register of the status LCD 
control gate array (SLCDC-GA) 26. The power supply 
circuit 47 produces an internal power source voltage of 
a predetermined level from an external power source 
voltage supplied via a built-in battery or an AC adapter 
to supply it to each unit within the computer system. The 
power supply circuit 47 produces a backup power 
source voltage (BK) to be supplied to the units requiring 
a backup power when the system power switch is off. 
[0065] The EEPROM 29 is connected to the PCMCIA 
gate array (PCMCIA-GA) 28 via a memory bus 15 hav- 
ing address and data lines, and accessed under the con- 
trol of the keyboard controller (KBC) 30. In this EEP- 
ROM 29, six sets of a power-on password, access right 
data, and operation password can be stored at a maxi- 
mum. Two sets are provided for maintenance persons, 
and four sets are provided for users. The features of 
these passwords and the access right will be described 
later. 

[0066] Access to the EEPROM 29 is controlled by the 
PCMCIA gate array (PCMCIA-GA) 28. When a supervi- 
sor privilege is set as an access right to the security reg- 
ister of the PCMCIA gate array (PCMCIA-GA) 28, ac- 
cess to all the memory areas of the EEPROM 29 is en- 
abled for registering, updating, and deleting passwords 
and access right data. When a password updating right 
is set, access to all the memory areas of the EEPROM 
29 is enabled for updating passwords. These controls 
will be described later. 

[0067] The access right data assigned to the power- 
on passwords may represent an access right (device ac- 
cess right) to the above-described input/output devices 
such as the serial port 41 , the hard disk drive (HDD) 42, 
the printer port (EPP) 43, the floppy disk driver 9FDD) 



45, and the PCMCIA port 48. 
[0068] An example of the PCMCIA gate array (PCM- 
CIA-GA) 28 is shown in Figs. 3 and 4. 
[0069] As shown in Figs. 3 and 4, the PCMCIA gate 
array (PCMCIA-GA) 28 includes a security register (SR) 
in which a one-byte access right is set, a special-pur- 
pose register group 201 having n pieces of 8-bit regis- 
ters including a plurality of EEPROM access control reg- 
isters (MR) for controlling to access the EEPROM 29, 
an ISA-BUS interface logic 202 coupled to the system 
bus (ISA-BUS) 11 , a KBC-BUS interface logic 203 cou- 
pled to the keyboard interface bus (KBC-BUS) 13, an 
EEPROM interface logic 204 coupled to a special-pur- 
pose line 15 of the EEPROM 29, and a password control 
logic 205 for controlling the interface logics 202, 203, 
and 204. 

[0070] The ISA-BUS interface logic 202 interfaces 
with the system bus (ISA-BUS) 11 , and controls the ac- 
cess to the special-purpose register group 201 in re- 
sponse to a request from the CPU 21 . In this control, the 
interface logic 202 uses an address enable signal 
(AEN), a special-purpose register designation signal 
(SPREG), a system address signal (SAO), an I/O read 
signal (IORD), an (I/O write signal (IOWR) and data of 
8-bit system data bus (SD), which are supplied via the 
system bus 11 from the CPU 21 . 
[0071] The KBC-BUS interface logic 203 controls the 
access to the special-purpose register group 201 in re- 
sponse to a request from the keyboard controller (KBC) 
30. In the control, the interface logic 203 uses a read/ 
write signal (R/W), a strobe signal (STROB), and ad- 
dress/data of 8-bit KBC data line in the keyboard inter- 
face bus (KBC-BUS) 13, which are supplied from the 
keyboard controller (KBC) 30 via the keyboard interface 
bus (KBC-BUS) 13. The KBC-BUS interface logic 203 
outputs, so as to notice data set in the register by the 
CPU 21 to the keyboard controller (KBC) 30, a request 
signal (REQUEST) to the keyboard controller (KBC) 30 
via the keyboard interface bus (KBC-BUS) 13. 
[0072] The EEPROM interface logic 204 sends the 
address (Address) and the read/write (R/W) signal ac- 
cording to setting of the EEPROM access control regis- 
ter (MR) via the memory bus under the control of the 
keyboard controller (KBC) 30, and reads/writes data 
(password character string) in the EEPROM 29. 
[0073] The contents and the structures of the pass- 
words and the access right to be stored in the EEPROM 
29 are shown in Figs. 5 and 6, and a control example of 
the access right to be set to the security register (SR) 
100 of the PCMCIA gate array (PCMCIA-GA) 27 is 
shown in Fig. 7. 

[0074] Processing sequence of checking the pass- 
words concealed from the system side, i.e., checking 
the passwords to be executed via a rear bus under the 
control of the keyboard controller (KBC) 30 at the sides 
of the CPU 21 and the keyboard controller (KBC) 30 is 
shown in Fig. 8, and processing sequence of setting the 
access right of checking the passwords (checking pow- 
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er-on passwords) is shown in Fig. 9. 
[0075] The features of the security function by check- 
ing the passwords in the embodiment of the present in- 
vention will be described with examples. 
[0076] In the embodiment of the present invention, 5 
operators using the portable computer are divided into 
ranks (groups), different passwords are respectively ap- 
plied to the ranks (groups), and device access rights 
suitable for the ranks are assigned to the passwords. 
Therefore, the reliability of the security function can be 
improved. 

[0077] The support of the password and the password 
control command of the embodiment will be described. 
[0078] The security function of this embodiment in- 
cludes a power-on password checking function and an 
operation password checking function. 
[0079] Power-on passwords and operation pass- 
words are stored in the EEPROM 29 coupled directly to 
the keyboard controller (KBC) 30 under the access con- 
trol of the keyboard controller (KBC) 30. Checking of the 
passwords (comparing, determining characters) and 
setting of the access right are performed by the key- 
board controller (KBC) 30. The passwords stored in the 
EEPROM 29 are not read via the system bus by the 
above-described rear bus function. 
[0080] In order to process the passwords, a "pass- 
word control command 0 is provided in this embodiment. 
[0081 ] The "password control command" is sent from 
the CPU 21 to the keyboard controller (KBC) 30 via the 
data communication register (CR) of the status LCD 
control gate array (SLCDC-GA) 26. 
[0082] Command/parameter from the CPU 21 to the 
keyboard controller (KBC) 30 are written in a first data 
communication register (CR-a) in the special-purposed 
register group (corresponding to the special-purposed 
register group 201 of the PCMCIA gate array 28) pro- 
vided in the status LCD control gate array (SLCDC-GA) 
26. In order to notice it to the keyboard controller (KBC) 
30, the CPU 21 sets the predetermined bit of a second 
data communication register (CR-b) to "1", thereby is- 
suing a request signal (REQUEST) to the keyboard con- 
troller (KBC) 30. 

[0083] The command/parameter are distinguished by 
the value of the predetermined bit of a third data com- 
munication register (CR-c). 

[0084] The keyboard controller (KBC) 30 determines, 
when receiving the request signal (REQUEST), whether 
the data signal is the command or the parameter from 
the value of the predetermined bit of the third data com- 
munication register (CR-c) of the status LCD control 
gate array (SLCDC-GA) 26, and reads data (command/ 
parameter) stored in the first data communication reg- 
ister (CR-a). Then, the keyboard controller (KBC) 30 
clears the predetermined bit of the second data commu- 
nication register (CR-b) to "0" to complete receiving. In 
a case where the data is formed of a plurality of bytes, 
the reading sequence of the data is repeated. 
[0085] A response (parameter) from the keyboard 



controller (KBC) 30 to the CPU 21 is transmitted by set- 
ting "data" of 1 bite and "status" of 1 byte. 
[0086] In the case of transmission, the "data" is written 
in fourth data communication register (CR-d) of the spe- 
cial-purposed register group (corresponding to 201) 
provided in the status LCD control gate array 
(SLCDC-GA) 26, the "status" is written in fifth data com- 
munication register (CR-e), and in order to notice it to 
the CPU 21 , a predetermined bit of sixth data commu- 
nication register (CR-f) is set to "1". 
[0087] The CPU 21 reads, when the predetermined 
bit of the sixth data communication register (CR-f) is "1 
the values (data status) of the fourth data communica- 
tion register (CR-d) and the fifth data communication 
register (CR-e), and clears the predetermined bit of the 
sixth data communication register (CR-f) to "0". 
[0088] As described above, the data communication 
is executed between the CPU 21 and the keyboard con- 
troller (KBC) 30. 

[0089] As shown in Fig. 6, six sets of a power-on pass- 
word, access right data, and operation password can be 
stored at a maximum in the EEPROM 29 to be accessed 
by the keyboard controller (KBC) 30. Two sets are pro- 
vided for maintenance persons, and four sets are pro- 
vided for users. 

[0090] Selection of presence or absence of checking 
the power-on password and registering/updating/delet- 
ing of the password can be executed on a setup screen. 
In this case, "no password check" is set, the system is 
started similarly to a normal system having no password 
checking function. In the case of "password check" is 
set, inputting of the password is requested in an initial- 
izing process and in a resume process performed at the 
time of power-on, and the system is started when the 
input password is accepted. 

[0091] When the "password check" is set by the set- 
up, the power-on password stored in the EEPROM 29 
is referred by a password checking process in the ini- 
tializing process performed at the time of power-on. If 
the key-input password does not coincide with any one 
of the power-on passwords stored in the EEPROM 29, 
the system is not started. However, when the user pass- 
words are not registered as the power-on passwords, 
the power-on password check is not executed ("super- 
visor privilege" is applied as the access right at this 
time). 

[0092] Four user passwords can be registered as the 
power-on passwords at a maximum (a plurality of the 
same passwords cannot be registered). In this case, the 
first password is for the supervisor, and the second and 
the following passwords are for ordinary user. 
[0093] Registering, updating, deleting of the power- 
on passwords for the user use are executed by means 
of a special utility tool. 

[0094] The access right data can be assigned to the 
power-on password as shown in Figs. 5 to 7. The access 
right specifies a range of user operation (data process- 
ing) when the system is started by the accepted power- 
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on password. 

[0095] The access right includes the supervisor priv- 
ilege, a password updating right, an HDD access right, 
an FDD access right, a serial port access right, a printer 
port access right, and a PCMCIA access right Further, 5 
maintenance privilege which Is not available for general- 
purposes is provided. 

[0096] The power-on passwords have following limit 
due to the difference of the access right. 

(1) maintenance privilege (bit 7) 
The maintenance privilege has a right of ac- 
cessing all the hardware resources, and is assigned 
only to the maintenance passwords. The mainte- 
nance privilege permits rewriting and initializing of 
The EEPROM 29 and BIOS-ROM 25, for example. 
This privilege is not liberated to ordinary users (only 
for maintenance). The power-on passwords having 
the maintenance privilege are limited to two. The 
setting is executed by a utility tool such as T&D. If 
the maintenance privilege is not provided, a write 
signal of the BIOS-ROM 25 is disabled. 

(2) Supervisor privilege (bit 6) 
The supervisor privilege has a right of access- 
ing hardware resources restricted in comparison 
with the maintenance privilege. The supervisor priv- 
ilege permits registering, updating deleting ail the 
user passwords and the access right including itself 
in the EEPROM 29. 

The supervisor privilege is set to the initial user 
password by means of a utility tool. The supervisor 
privilege can be set to the second and following 
passwords. The passwords having the supervisor 
privilege can be registered updated deleted for all 
the user passwords. That is, the supervisor privi- 
lege does not permit rewriting of the BIOS-ROM 25 
formed of the flash memory (FLASH MEM). Further, 
registering of other user passwords and access 
rights is permitted. 

(3) Password updating right (bit 5) 
The password updating right provides a right of 

updating own password, but cannot update other 
passwords. The password updating right is a right 
of whether the power-on password is enabled or 
disabled for updating. If the power-on password is 
disabled, the own password cannot be updated by 
setup or updating the power-on password (the key- 
board controller (KBC) 30 rejects the command). 

In a case where the supervisor privilege has no 
password updating right, registering, updating and 
deleting of the passwords are not permitted. 

When the password updating right is provided, 
the password can be updated after the registered 
password to be updated is input and new password 
is described continued to 7". In this case, the pass- 
words are compared by power-on password check 
command included in the password control com- 
mand. 



(4) HDD access right (bit 4) 

(5) FDD access right (bit 3) 

(6) Serial port access right (bit 2) 

(7) Printer port access right (bit 10) 

(8) PCMCIA access right (bit 0) 

[0097] The HDD access right, the FDD access right, 
the serial port access right, the printer port access right, 
and the PCMCIA access right are rights of accessing to 
a corresponding hardware resource. A disabled hard- 
ware resource is can cannot be accessed (in this case, 
it is excluded from a system configuration list). When 
the HDD access right is not enabled (when "1 n is not set 
to bit 4 (b4) of the security register (SR) 100), chip se- 
lects of the hard disk drive (HDD) 42 are all disabled 
under the control of the hardware by the security register 
(SR) 1 00. When the FDD access right is not enabled 
(when "1 ■ is not set to bit 3 (b3) of the security register 
(SR) 100), a motor-on signal of the floppy disk drive 
(FDD) 45 is disabled. When the serial port access right 
is not enabled (when M 1° is not set to bit 2 (b2) of the 
security register (SR) 100), transmission data SD and 
reception data RD of the SIO of the serial port 41 are 
disabled. When the printer port access right is not ena- 
bled (when "1 0 is not set to bit 1 (b1 ) of the security reg- 
ister (SR) 1 00), the chip select of the control chip of the 
printer port 43 is disabled. When the PCMCIA access 
right is not enabled (when "1 " is not set to bit "0" (bO) of 
the security register (SR) 100), the chip select of the 
control chip of the PCMCIA port 48 is disabled. 
[0098] In order to avoid a defective state that the sys- 
tem operation can not be started, it must be confirmed 
by a utility tool that any one of the HDD and the FDD is 
enabled by the corresponding device access right. 
[0099] In the power-on password mode, the power-on 
password is input and checked. A process of the power- 
on password mode is executed by "power-on password 
mode command" of the password control command. At 
the time of resuming, when the password location is 
designated by the parameter, check of the password is 
executed only for the designated password. 
[0100] in order to enable for inputting the password 
during active execution of the power-on password input 
mode, the keyboard (KB) 51 is key-scanned, but the 
mouse 52 is inhibited for communication. In this case, 
transmission of the key-scan data is not executed for 
the CPU 21. 

[0101] When coincidence of the passwords is ob- 
tained by checking the passwords of the power-on pass- 
words, the access right data assigned to the password 
is retrieved from the EEPROM 29 and set to the security 
register (SR) 100 of the PCMCIA gate array (PCM- 
CIA-GA) 28. In this case, the keyboard controller (KBC) 
30 transmits "coincident password location" as data and 
p 00h (normal end)" as status to the CPU 21 , and returns 
to the normal key inputting after the data and the status 
are transmitted. 

[0102] If the coincident password does not exist, the 
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input string of password characters is cleared, B FFh (ab- 
normal end)" as data and "01 h (no coincident pass- 
word)" as status are transmitted, and again password 
input queues after the transmission. That is, it is not re- 
turned to the normal key input until inputting of the pass- s 
word is normally ended. 

[0103] The embodiment of the present invention in- 
cludes an instant security function. 
[0104] The instant security function can lock the key- 
board and display (operation lock) by the operation of 
hot keys (Fn + Fl) during active execution of the appli- 
cation. 

[01 05] Key-inputting of the keyboard (KB) 51 and the 
external keyboard are ignored in the operation lock 
state, and PS/2 mouse 52 is disabled. In this case, the 
keyboard controller (KBC) 30 receives the key-input so 
as to enable for inputting the passwords, but inhibits to 
output to the system bus (ISA-BUS) 11 . Simultaneously, 
the displays of the LCD panel 49 and the external CRT 
are all erased. In this case, VGA controller 32 and the 
video memory (VRAM) 33 can be accessed. 
[0106] It is necessary to input the passwords (opera- 
tion passwords) from the keyboard (KB) 51 so as to un- 
lock the operation lock state. In this case, all the input 
character string and the number of characters are not 
displayed on the screen. The inputting of the passwords 
is ended by finally depressing the [Enter] key. The string 
of characters immediately before the [Enter] key is to be 
compared with those of the registered passwords, and 
the character string is discarded in the case of noncoin- 
cidence. In this case, new comparison is started from 
the character input after the [Enter] key is operated. 
Even if the character string is coincident, the lock is not 
unlocked until the [Enter] key is pressed. When the code 
of the [Enter] key is placed before and after the correct 
password, the lock can be reliably unlocked. In the case 
of no password, it is processed as regarded "character 
string = Null (vacant)". That is, the operation lock is un- 
locked only by the operation of the [Enter] key. 
[0107] An operation password for the instant security 
can be set separately from the power-on password. The 
operation password is stored in the EEPROM 29 for 
each power-on password (i.e., each user). A default 
password is set to the same as the power-on password. 
[0108] Registering, updating, and deleting of the 
passwords for instant security (operation password) are 
executed in the setup process. 
[0109] As shown in Fig. 6 and 7, the password (oper- 
ation password) for unlocking the operation lock is 
stored together with the power-on password and the ac- 
cess right in the EEPROM 29. The four operation pass- 
words can be totally set corresponding to the user pow- 
er-on passwords. Even if the power-on password is not 
set, the operation password can be set. 
[0110] When the power-on password is set, data 
(character string) of the power-on passwords are used 
as the operation passwords as it is in the case of the 
default. If the operation password and the power-on 



password are different, it is checked whether the input 
password coincides with the operation password, and 
the power-on password is invalidated. 
[0111] If the power-on password and the operation 
password are differentiated, a password setting utility is 
used. However, following limits exist according to a dif- 
ference of access rights. 

(1 ) An operator having the maintenance privilege or 
the supervisor privilege can register, update and de- 
lete all the operation passwords. 

(2) An operator having the password updating right 
can register, update and delete his or her own op- 
eration password. 

(3) An operator who does not have the above-men- 
tioned privilege or right cannot carry out any pass- 
word control operations. 

[01 12] The operation lock is unlocked when the pass- 
word identical to the operation password is input in the 
operation password check mode. 
[0113] In this mode, a transmission of a scan code 
from the keyboard controller (KBC) 30 to the CPU 21 is 
inhibited, and PS/2 mouse 52 is also inhibited for com- 
munication. However, since the keyboard controller 
(KBC) 30 key-scans the keyboard (KB) 51 so as to 
queue inputting of the password. 
[01 14] In this case, checking of the password is start- 
ed after inputting of [Enter] key is executed. 
[01 15] Checking of the password is first executed for 
all input characters of a buffer. In the case of noncoin- 
cidence, the password is then checked except the initial 
one character, and the passwords are sequentially con- 
tinuously checked until the number of the remaining 
characters becomes "0". 

[01 16] During active checking of the passwords after 
inputting by [Enter] key, an interrupt is inhibited in the 
keyboard controller (KBC) 30, and a key-input is not ac- 
cepted. 

[01 17] In the case of checking the passwords, the op- 
eration password is first to be compared with the input 
password, and if the operation password is not regis- 
tered, the power-on password is next to be compared 
with the input password. 

[01 1 8] In the case of responding to the CPU 21 , when 
the password is not registered at all (including the pow- 
er-on password), unlock of the operation lock is noticed 
only by inputting with the [Enter] key. If there exists no 
coincident password, the input buffer is cleared. Again, 
it becomes a password input queuing state. If the coin- 
cident passwords exist, "password location" coincident 
as data and "OOh (normal end)" as status are transmitted 
to the CPU 21 , and returns to normal key-inputting. 
[01 1 9] The password control commands used for the 
embodiment described above will be described. 
[01 20] The following commands are valid in the pass- 
word control mode. 



15 



20 



25 



30 



35 



40 



45 



50 



12 



23 



EP 0 588 083 B1 



24 



Power-on password status command 
Power-on password check command 
Power-on password + access right setting com- 
mand 

Power-on password + access right deleting com- 
mand 

Power-on password updating command 
Access right updating command 
Access right output command 
Power-on password mode command 
Operation lock status command 
Operation lock password check command 
Operation lock password setting command 
Operation lock password deleting command 
Operation lock password mode command 
Hot key pattern registering command 
EEPROM access command 

[0121] The "maintenance privilege" or "supervisor 
privilege" is necessary as the access right to execute 
the power-on password + access right setting com- 
mand, the power-on password + access right deleting 
command and the access right updating command of 
the above-described commands. The "maintenance 
privilege", "supervisor privilege" or "password updating 
right" is necessary as the access right to execute the 
power-on password updating command. The access 
right output command is limited in the function if the 
"maintenance privilege" or the "supervisor privilege" are 
not existent. 

[0122] The keyboard controller (KBC) 30 returns, 
when the process for the above-described command is 
finished, to normal key-input process. 
[0123] The keyboard controller (KBC) 30 transfers, 
when receiving the power-on password status com- 
mand (without parameter), the status of the power-on 
password as data to the CPU 21 . 
[0124] The keyboard controller (KBC) 30 checks, 
when receiving the power-on password command, only 
the password at the time of updating the password as 
described above. When the passwords coincide, "pass- 
word location" coincident as data and "OOh (normal 
end)" as status are transmitted to the CPU 21 , the key- 
board controller (KBC) 30 returns to normal input proc- 
ess. When the passwords do not coincide, "FFh (abnor- 
mal end)" is transmitted as data, and the keyboard con- 
troller (KBC) 30 returns to the normal key-input process. 
[0125] The keyboard controller (KBC) 30 sets, when 
receiving the "power-on password + access right setting 
command", the password and the access right. This 
command is received when the "maintenance privilege" 
or the "supervisor privilege" is provided. When the key- 
board controller (KBC) 30 abnormally ends, "FFh" is 
transmitted as data, and the keyboard controller (KBC) 
30 returns to the normal key-input process. 
[0126] The keyboard controller (KBC) 30 deletes, 
when receiving the "power-on password + access right 
deleting command", the password and the access right. 



In this case, the corresponding operation password is 
deleted. When the keyboard controller (KBC) 30 nor- 
mally ends, "password storage location" deleted as data 
and "OOh" as status are transmitted to the CPU 21 , and 
5 the keyboard controller (KBC) 30 returns to the normal 
key-input process. If the keyboard controller (KBC) 30 
abnormally ends, "FFh" as data and "content of abnor- 
mal end" as status are transmitted, and the keyboard 
controller (KBC) 30 returns to the normal key-input proc- 
ess. 

[0127] The keyboard controller (KBC) 30 rewrites, 
when receiving the power-on password updating com- 
mand, only designated power-on password. This com- 
mand is accepted when the "maintenance privilege" or 
the "supervisor privilege" or the "password updating 
right" is applied. In the case of the normal end, the "pass- 
word setting location" updated as data and "OOh" as sta- 
tus are transmitted to the CPU 21 , and the keyboard 
controller (KBC) 30 returns to the normal key-input proc- 
ess. In the case of abnormal end, "FFh" as data and 
"content of abnormal end" as status are transmitted, and 
the keyboard controller (KBC) 30 returns to the normal 
key-input process. 

[0128] The keyboard controller (KBC) 30 rewrites, 
when receiving the access right updating command, the 
access right of the power-on password. This command 
is accepted when the "maintenance privilege" or the "su- 
pervisor privilege" is applied. In the case of normal end, 
"password storage location" updated as data and "00h n 
as status are transmitted to the CPU 21 , and the key- 
board controller (KBC)30 returns to the normal key-input 
process. In the case of abnormal end, "FFh" as data and 
"content of abnormal end" as status are transmitted, and 
the keyboard controller (KBC) 30 returns to the normal 
key-input process. 

[0129] The keyboard controller (KBC) 30 outputs, 
when receiving the access right output command, the 
access right corresponding to the designated password 
storage location to the CPU 21. In the case of normal 
end, the "access right" read as data from the EEPROM 
29 and "OOh" as status are transmitted to the CPU 21, 
and the keyboard controller (KBC) 30 returns to the nor- 
mal key-input process. 

[0130] The keyboard controller (KBC) 30 transfers, 
when receiving the power-on password mode com- 
mand, to the input mode of the power-on password. The 
designated password applied as parameter or undesig- 
nated password is password-checked. In order to input 
the password during active execution of the power-on 
password input mode, the keyboard (KB) 51 is key- 
scanned, but the mouse 52 is inhibited for communica- 
tion. In this case, key-scan data is not transmitted to the 
CPU 21. 

[0131] When the passwords coincide in the case of 
checking the passwords of the power-on password, the 
access right corresponding to the password is set to the 
security register (SR) 100 of the PCMCIA gate array 
(PCMCIA-GA) 28. In this case, "coincident password lo- 
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cation" as data and "OOh (normal end" as status are 
transmitted to the CPU 21, the keyboard controller 
(KBC) 30 returns to the normal key-input process after 
the data and the status are transmitted. If there is no 
coincident password, the input password character 
string is cleared, B FFH (abnormal end)" as data and "01 h 
(no coincident password)" as status are transmitted, and 
password input queue Is set after the transmission. That 
is, the normal key-input is not returned until the pass- 
word input is normally end. At the time of returning to 
resuming, when the password location is designated by 
the parameter, the password is checked only for the des- 
ignated passwords. 

[01 32] The EEPROM 29 is accessed to read when the 
operation lock status command is received, and the set- 
ting state of the operation password is transmitted to the 
CPU 21. 

[0133] When the operation lock password check com- 
mand is received, the operation password designated 
by the parameter is checked. In the case of the normal 
end, "set state information of the operation password" 
as data and °00h" as status are transmitted to the CPU 
21, and normal key-input process is returned. In the 
case of abnormal end, "FFh" as data and "content of 
abnormal end" as status are transmitted, and normal 
key-input process is returned. 
[0134] When the operation lock password set com- 
mand is received, the EEPROM 29 is accessed accord- 
ing to the password storage location designated by the 
parameter and the password character string, and the 
designated operation password is set. The command is 
accepted when the "maintenance privilege" or the "su- 
pervisor privilege" or the "password updating right" is 
applied. In the case of normal end, "set password stor- 
age location" as data and "OOh" as status are transmitted 
to the CPU 21, and normal key-input process is re- 
turned. In the case of abnormal end, "FFh" as data and 
"content of abnormal end" as status are transmitted, and 
normal key-input process is returned. 
[0135] When the operation lock password deleting 
command is received, the operation password designat- 
ed by the parameter is deleted. In the case of normal 
end, "location of the deleted password" as data and 
"OOh" as status are transmitted to the CPU 21 , and nor- 
mal key-input process is returned. In the case of abnor- 
mal end, "FFh" as data and "content of abnormal end" 
as status are transmitted, and normal key-input process 
is returned. 

[0136] When receiving the operation lock password 
command, the operation password input mode is trans- 
ferred. 

[01 37] In the operation password input mode, the key- 
inputs of the keyboard (KB) 51 and the external key- 
board are ignored, and PS/2 mouse 52 is disabled. In 
this case, since the keyboard controller (KBC) 30 can 
input the password, the keyboard controller (KBC) 30 
receives the key-input but inhibits to output it to the sys- 
tem bus (ISA-BUS) 11. Simultaneously, the LCD panel 



49 and the external CRT are all erased. In this case, the 
VGA controller 32 and the video memory (VRAM) 33 
can be accessed. In this case, the character string, the 
number of the characters of the input password are not 

s displayed on the screen at all. The last of the password 
is ended by [Enter] key. The character string immediate- 
ly before the depression of the [Enter] key is to be com- 
pared. In the case of noncoincidence, the character 
string is discarded. At that time, the character input after 

10 the operation of the [Enter] key is newly started to be 
compared. Even if the character strings coincide, the 
lock is not unlocked unit the [Enter] key is pressed. In 
the case of no password, the operation lock is unlocked 
only by the operation of the [Enter] key. 

15 [0138] Referring now to Figs. 2 to 9, the password 
checking process of the embodiment of the present in- 
vention will be described. 

[0139] The CPU 21 sends the password registration 
verify command (power-on password status command) 

20 to the keyboard controller (KBC) 30 via the data com- 
munication register (CR) of the status LCD control gate 
array (SLCDC-GA) 26 shown in Fig. 3 in the case of in- 
itializing (IRT process) at the time of system power-on. 
When registering of the password (the number of regis- 

25 tered passwords * 0 is verified by the response content 
(the number of registered passwords) from the key- 
board controller (KBC) 30 upon issuing of the command, 
the password input message data is sent to the VGA 
controller 32 by BIOS calling, the password input mes- 

30 sage is displayed on the LCD panel 49, and further the 
power-on password mode command (password input 
command) is sent to the keyboard controller (KBC) 30 
via the data communication register (CR) of the status 
LCD control gate array (SLCDC-GA) 26 (step S1 in Fig. 

35 8A). 

[0140] Then, the password input is queued (step S2 
in Fig. 8A). 

[0141] On the other hand, the keyboard controller 
(KBC) 30 queues, when receiving the power-on pass- 
40 word mode command (password input command) from 
the CPU 21 , the input of the password character string 
(steps S11 - S13 in Fig. 8B). 

[0142] When the password character string is input 
from the keyboard (BK) 51 and the [Enter] key is pressed 
45 after the characters are input, the keyboard controller 
(KBC) 30 verifies the input of the password, and com- 
pares to collate the input password with the registered 
password stored in the EEPROM 29 (steps S14 - S15 
in Fig. 8B). 

so [0143] In this case, two maintenance passwords and 
four user passwords can be registered at a maximum 
as power-on password to the EEPROM 29 to be ac- 
cessed by the keyboard controller (KBC) 30 as shown 
in Fig. 6, and the registered passwords are to be com- 

55 pared with the input passwords. 

[0144] The keyboard controller (KBC) 30 key-scans 
the keyboard (KB) 51 so as to input the password during 
active password checking, but the mouse 52 inhibits for 
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communication. In this case, key-scan data are trans- 
mitted to the CPU 21. 

[0145] Checking of the passwords of this case se- 
quentially compares the input password with the first 
(#1) registered power-on password stored in the EEP- 5 
ROM 29. 

[0146] When the passwords coincide in the checking 
of the passwords as described above, the access right 
to be described later is set, input coincident response 
(actually coincident "password location" as data in EEP- 
ROM 29 and a 00h° as status) is returned. In the case of 
password noncoincidence, the input noncoincidence re- 
sponse (actually "FFh" as data and "01 h" indicating no 
coincident password as status) is returned, and the 
password control command process is ended (steps 
S16,S17in Fig. 8B). 

[0147] The CPU 21 then continues, when receiving 
the input coincident response, the processing and nor- 
mally stars the system (step S3 in Fig. 8A). The CPU 21 
again, when receiving the input noncoincidence re- 
sponse, queues the password input (steps S3, S2,.. in 
Fig. 8A). 

[0148] The keyboard controller (KBC) 30 sequentially 
compares the passwords input in the checking of the 
passwords as described above with registered first (#1) 
power-on passwords stored in the EE PROM 29 (steps 
S21 - S25 in Fig. 9), and sets the access right corre- 
sponding to the coincident password to the security reg- 
ister (SR) of the PCMCIA gate array 9PCMCIA-GA) 28 
(steps S31 - S33 in Fig. 9). 

[0149] As shown in Figs. 5 to 7, the power-on pass- 
words can contain the access right in the power-on 
passwords. The access right specifies a range of user 
operation if the system is started with the password da- 
ta. 

[01 50] In this specification, the access right is defined 
to include the supervisor privilege, the password updat- 
ing right, the HDD access right, the FDD access right, 
the serial port access right, the printer port access right, 
the PCMCIA access right, and further defined to include 
maintenance privilege which is not unlocked to ordinary 
users. 

[0151] The maintenance privilege ("1" is set to bit 7 
(b7) of the security register (SR)) is given only to the 
passwords for the maintenance, and has all authorities 
including rewriting of the EEPROM 29, initializing of the 
EEPROM 29. This right is not unlocked to the ordinary 
users (only for maintenance). The power-on password 
having the privilege for the maintenance is limited to two. 
The setting is executed by a utility tool (T&D). If the pass- 
words do not have the maintenance privilege (bit 7 = 
"0"), a write signal of the BIOS-ROM 25 is disabled as 
shown in Fig. 7. 

[01 52] The supervisor privilege (" 1" is set to bit 6 (b6) 
of the security register (SR)) has all rights except rewrit- 
ing of the BIOS-ROM 25 of flash memory (FLASH MEM) 
configuration, and can register, update, delete all the us- 
er passwords and the access right including the itself. 



The supervisor privilege is applied to the user password 
initially set by means of a utility tool. The supervisor priv- 
ilege can be set to the second and following passwords. 
The passwords having the supervisor privilege can be 
registered, updated and deleted for ail the user pass- 
words. Further, setting of other passwords, and the ac- 
cess right can be executed. 

[0153] The password updating right ("1 " is set to bit 5 
(b5) of the security register (SR)) is a right for updating 
the own power-on password, and cannot update other 
password. If this password updating right is not enabled, 
the own password cannot be updated in the case of set- 
up or updating the power-on password. 
[0154] The HDD access right, the FDD access right, 
the serial port access right, the printer port access right, 
and the PCMCIA access right are rights for enabling or 
disabling for accessing of the units, and arbitrary unit 
using can be set to all the user power-on passwords. 
The disabled unit cannot be accessed (in this case, it is 
excluded from the system configuration list). 
[0155] The HDD access right of the device access 
rights is a right for enabling for use of the hard disk drive 
(HDD) 42. When the HDD access right is not enabled 
("1 " is not set to bit 4 (b4) of the security register (SR)), 
chip selects of the hard disk drive (HDD) 42 are all dis- 
abled. 

[01 56] The FDD access right is a right for enabling for 
use of the floppy disk drive 9 FDD) 45. When the FDD 
access right is not enabled ("1 " is not set to bit 3 (b3) of 
the security register (SR)), the motor-on signal of the 
floppy disk drive (FDD) 45 is disabled. 
[0157] The serial port access right is a right for ena- 
bling for use of the serial port 41 . When the serial port 
access right is not enabled ("1" is not set to bit 2 (b2) of 
the security register (SR)), transmission data SD and 
reception data RD of the SIO of the serial port 41 are 
disabled. 

[0158] The printer port access right is a right for ena- 
bling for use of the printer port 43. When the printer port 
access right is not enabled (T is set to bit 1 (b1 ) of the 
security register (SR)), the chip sleet's of the control chip 
of the printer port 43 are disabled. 
[0159] The PCMCIA access right is a right for ena- 
bling for use of the PCMCIA port 48. When the PCMCIA 
access right is not enabled ("1 " is not set to bit 0 (bO) of 
the security register (SR)), the chip selects of the control 
chip of the PCMCIA port 48 are disabled. 
[0160] The available right is always applied to any of 
the HDD access right and the FDD access right of the 
device access rights so as to avoid a defective state of 
starting no system due to no use of both the HDD and 
the FDD. 

[0161] As described above, at the time of checking the 
power-on passwords, when the password coincident 
with the input password is registered into the EEPROM 
29, a range of use operating is specified by the access 
right for the password. Accordingly, a plurality of pass- 
words can be registered, and dedicated access rights 
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can be set to the registered passwords. Therefore, the 
reliability of the security function can be improved. 
[01 62] In the embodiment described above, two pass- 
words for maintenance persons and four passwords for 
users can be registered at a maximum as the power-on 5 
passwords. However, the present invention is not limited 
to the particular embodiment, but the arbitrary number 
of registered passwords can be set, and the access 
rights for the registered passwords can be set. The 
memory for storing the passwords is not limited to the 
EEPROM. For example, the passwords can be stored 
in other secondary power supported memory. 
[0163] In the embodiments described above, the 
passwords are checked by the keyboard controller 
(KBC) 30. However, the present invention is not limited 
to the particular embodiment. The passwords can be 
checked by other sub CPU. 

[0164] In the embodiment described above, the secu- 
rity register (SR) and the EEPROM access register are 
provided in the PCMCIA gate array (PCMCIA-GA) 28. 
However, this is executed due to circuit margin of the 
PCMCIA gate array (PCMCIA-GA) 28. For example, the 
status LCD control gate array (SLCDC-GA) 26 or other 
chip such as the sub CPU chip can be provided therefor. 
[01 65] A second essential construction of the portable 
computer will be described below. Fig. 10 shows the 
second essential construction. 
[0166] The second essential construction is charac- 
terized in that the portable computer has a security func- 
tion in which registered passwords are hidden in the sys- 
tem (particularly, from a system bus). 
[0167] As shown in Fig. 1 0, the portable computer in- 
cludes a main CPU 1 B for controlling the whole system, 
a sub CPU 2B connected to the main CPU 1 B via a sys- 
tem bus 5B, a password memory, connected to the sub 
CPU 2B via a memory bus 6B having address and data 
lines, for storing a plurality of registered passwords, and 
an input section 4B for inputting a password. The main 
CPU 1 B, sub CPU 2B, password memory 3B, input sec- 
tion 4B, system bus 5B, and memory bus 6B shown in 
Fig. 1 0 correspond to the main CPU 21 , keyboard con- 
troller (KBC) 30, EEPROM 29, system bus 1 1 , and mem- 
ory bus 15. 

[0168] In Fig. 2, the keyboard controller 30 incorpo- 
rates a CPU, a ROM, a RAM, and an I/O port, and is 
connected to the EEPROM 29 via the memory bus 15. 
The EEPROM 29 stores a plurality of passwords under 
the control of the keyboard controller 30. The keyboard 
controller 30 has a password registering function for reg- 
istering the password input from the keyboard (KB) 51 
to the EEPROM 29 according to a password control 
command (password input command) from the CPU 21 
as an internal control program processing function, and 
a password checking function for checking the validity 
of the input password by referring to the registered pass- 
word stored in the EEPROM 29 according to the pass- 
word control command (password check command) 
from the CPU 21 . Further, the keyboard controller (KBC) 



30 has communication control means for returning the 
result (coincidence/noncoincidence response) of 
checking the passwords to the main CPU 21 . 
[0169] In the construction described above, at the 
time of password registration, passwords input from the 
keyboard (KB) 51 are stored in the EEPROM 29 under 
the control of the keyboard controller (KBC) 30 accord- 
ing to the password control command (password input 
command) from the CPU 21 . The passwords stored in 
the EEPROM 29 are managed by the keyboard control- 
ler (KBC) 30. At the time of power-on, the input pass- 
word is collated to the passwords stored in the EEPROM 

29 under the control of the keyboard controller (KBC) 

30 according to the password control command (pass- 
word check command) from the CPU 21, validity is 
judged, and its response (data indicating coincidence/ 
noncoincidence and status) is returned to the CPU 21 . 
[0170] As described above, since the passwords are 
registered and checked only under the control of the 
keyboard controller (KBC) 2. Registering and checking 
of passwords are performed without any process of the 
CPU 21 . Therefore, there is no fear of leaking the reg- 
istered passwords stored in the EEPROM 29 on the sys- 
tem bus 1 1 . Since the registered passwords can be con- 
cealed from the system bus 11 , the reliability of the se- 
curity function can be improved. 

[0171] In the computer having a security function of 
checking an input password, the registered passwords 
are concealed from the system side to reliably prevent 
leakage of the passwords by a third parson to improve 
the security function. That is, the CPU 21 on the system 
bus (ISA-BUS) 11 does not check the passwords. The 
keyboard controller (KBC) 30 accesses the EEPROM 
29 through the rear bus (keyboard interface bus 
(KBC-BUS) 13) to perform the password checking. 
Thus, the registered passwords cannot be known from 
the system bus (ISA-BUS) 11 , thereby reliably prevent- 
ing the leakage of the passwords. 
[0172] A third essential construction of the portable 
computer will be described below. Fig. 11 A shows the 
second essential construction. 
[0173] The third essential construction is character- 
ized in that the portable computer resumes the display 
screen after an acceptable password is input. 
[0174] As shown in Fig. 11 A, the portable computer 
includes a main CPU 1C for controlling an overall sys- 
tem and having resuming process executing means, a 
saving memory 2C connected to the main CPU 1C via 
a system bus for temporarily saving display data on the 
display screen to be resumed, a BIOS memory 3C for 
storing display data of a password input window, a dis- 
play unit 4C for selectively displaying the display data 
stored in the BIOS memory 3C and the saving memory 
2C, a keyboard (KB) 5C for inputting a password, a non- 
volatile memory 7C for storing a plurality of registered 
passwords, and a password checking section 6C for 
checking whether the password input from the keyboard 
5C coincides with any one of the registered passwords 
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stored in the non-volatile memory 7C and transmitting 
a response to the CPU 1 C as a result of the checking. 
[0175] The main CPU 1C, saving memory 2C, BIOS 
memory 3C, keyboard 5C, and nonvolatile memory 7C 
shown in Fig. 1 1 A correspond to the main CPU 21 , sys- 5 
tern memory 23, BIOS-ROM 25, keyboard 51 , and EEP- 
ROM 29 shown in Fig. 2. The display unit 4C corre- 
sponds to the video memory (VRAM) 33, the LCD panel 
49, and the like. The password checking section 6C cor- 
responds to a microprogrammed processing means in 
the internal processor of the keyboard controller 30. The 
VGA controller 32 selectively sets one of a text display 
mode for displaying display data of a text form on the 
LCD panel 49 and a graphic display mode for displaying 
display data of a graphic form on the LCD panel 49. A 
mode register 32A stores mode flag data for selecting 
one of the text display mode and the graphic display 
mode. The video memory 33 has memory areas 33A 
and 33B as shown in Fig. 11B. the memory area 33A 
stores all the text-form display data in the text display 
mode and part of the graphic-form display data in the 
graphic display mode. The memory area 33B stores the 
remainder of the graphic-form display data in the graph- 
ic display mode. The BIOS-ROM 25 has text-form dis- 
play data representing a password input requesting 
message as a password input window. At the time of 
inputting a password, the message display data is 
stored in the memory area 33A in place of display data 
restored in the resume process. 
[0176] The operation of the above construction will be 
described. 

[0177] The CPU 1 C restores the display screen at the 
time of suspending in the case of resuming upon turning 
of a system power source ON and temporarily saving 
the restored screen in the saving memory 2C. Then, the 
CPU 1C reads the password input window previously 
stored in the BIOS memory 3C instead of the restored 
screen, and causes the password input window to be 
displayed on the display unit (DISP) 4C. When a pass- 
word is input on the password input window, it is 
checked whether the input password coincides with any 
one of the registered passwords stored in the nonvola- 
tile memory 7C by the password checking unit 6C. (A 
this time, the input password is not displayed. Thus, 
there is no fear of reading the password by a third per- 
son.) 

[0178] The password checking unit 6C returns a re- 
sponse to the CPU 21 as a result of the password check- 
ing. 

[0179] The CPU 1C reads the display data stored in 
the saving memory 2C when it is detected from the re- 
sponse that the input password is acceptable, and 
cause it to be displayed on the display unit 4 instead of 
the password input window. 

[0180] As described above, the display screen is re- 
sumed after the input password is accepted. Thus, leak- 
age of information in the resume mode by a third person 
can be prevented. 



[0181] Regarding the third essential construction, the 
operation of the portable computer will be described in 
detail. 

[01 82] In the resuming process after the system pow- 
er is switched on, the CPU 21 restores the display 
screen at the time of suspending, and temporarily saves 
the resumed screen (display data) in a predetermined 
area of the system memory 23. Further, the CPU 21 is- 
sues a power-on password mode command (password 
input command) to the keyboard controller (KBC) 30. 
Then, the CPU 21 reads the message display data 
stored in the BIOS-ROM 25, sends it to the VGA con- 
troller 32 to display the password input window on the 
LCD panel 40. When a password is input on the pass- 
word input window, the keyboard controller (KBC) 30 
checks whether the input password coincides with any 
one of the registered passwords stored in the EEPROM 
29. More specifically, the keyboard controller (KBC) 30 
starts checking of the passwords upon receiving of the 
key code upon operation of the [Enter] key after the 
password character string is received from the keyboard 
(KB) 51 . After the password checking, the keyboard 
controller (KBC) 30 transmits a response (data/status) 
to the CPU 21 . When the coincidence is detected in the 
password checking, data representing the coincident 
password location and status n 00h n representing a nor- 
mal end are transmitted to the CPU 21 through the com- 
munication register of the status LCD control gate array 
(SLCDC GA) 26. In response to this response, the CPU 
21 reads, the resumed screen temporarily saved in the 
system memory 23, and restores it in the video memory 
33 through the VGA controller 32, so as to display the 
resumed screen on the LCD panel 49 instead of the 
password input window. 

[0183] As described above, when the power source 
is switched on in the resume mode, the password check- 
ing is performed on the input password. The resumed 
screen is not displayed before the input password is de- 
tected to be acceptable in the password check. Thus, 
an unauthorized user cannot obtain the information con- 
cerning an interrupted data processing, without input- 
ting a correct password. 

[0184] In the embodiment, all display data of the re- 
sumed screen are temporarily moved from the video 
memory 33 to the system memory 23. However, it is not 
necessary to save the display data to the system mem- 
ory 23 if the main CPU 21 is arranged as follows: 
[0185] In this case, the main CPU 21 performs a con- 
trol process of controlling the VGA controller 32 to set 
the LCD panel 49 to a blank display state or a nonop- 
erable state. 

[01 86] When display data stored in the video memory 
33 are of the graphic form, the main CPU 21 performs 
another control process of controlling the VGA controller 
32 to temporarily switching the LCD panel 49 to the text 
display mode to inhibit the graphic-form display data 
from being displayed. Further, the another process may 
include a process of saving the graphic-form display da- 
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ta stored in a portion 33C of the first memory area 33A 
after the LCD panel 49 is switched to the text display 
mode, and set display data of a password input request- 
ing message in the portion 33C of the first memory area 
33A. 5 
[0187] A fourth essential construction of the portable 
computer will be described below. Fig. 12 shows the 
fourth essential construction. 

[0188] The fourth essential construction is character- 
ized in that the portable computer sets an operation 
password for unlocking an operation lock independently 
of the power-on password for starting a data processing 
immediately after the power source is switched on. 
[0189] As shown in Fig. 12, the portable computer in- 
cludes a CPU 1 D, a password memory 2D, an input sec- 
tion (KB) 3D, and a password checking section 4D. The 
portable computer has a password checking function at 
the time of power-on and an operation locking and its 
unlocking function for temporarily disabling the system. 
The CPU 1 D issues a power-on password check com- 
mand (power-on password mode command) for a pow- 
er-on password checking process, and an operation 
lock unlocking command (operation lock password 
mode command) for a operation lock unlocking process. 
The password memory 2D stores a plurality of power- 
on passwords and a plurality of operation passwords to 
be used to unlock the operation lock. The input section 
(KB) 3D is used for inputting a password (a string of 
password characters). At the time of power-on, a power- 
on password is input. At the time of unlocking the oper- 
ation lock, an operation password is input. The pass- 
word checking section 4D performs a password check- 
ing on the password input by the input section 3D under 
the control of the CPU 1 D. When the power-on pass- 
word check command (power-on password mode com- 
mand) is supplied to the password checking section 4D, 
it is checked whether the input password coincides with 
any of the power-on passwords stored in the password 
memory 2D. When the operation lock unlocking com- 
mand (operation lock password mode command) is sup- 
plied to the password checking section 4D, it is checked 
whether the input password coincides with any of the 
operation passwords stored in said password memory 
2D. Each of the operation passwords is assigned to a 
corresponding one of the power-on passwords. In an in- 
itial state, there is no operation password assigned to 
the power-on passwords. Therefore, the power-on 
passwords serve as default operation passwords, and 
are compared with the input password input by the input 
section 3D. 

[0190] In this essential construction, the CPU 1D is- 
sues the power-on password check command (power- 
on password mode command) in an initialization (or re- 
suming process) performed immediately after the sys- 
tem power source is switched on. 
[0191] At this time, a password input window is dis- 
played on a display unit under the control of BIOS ac- 
cording to the password check command. Even if a 



string of password characters is input, the input charac- 
ters (content of the password) are not displayed on the 
password input window. Thus, a leakage of the pass- 
word to a third person is prevented. 
[0192] When the CPU 1 D issues the power-on pass- 
word check command, the password checking section 
4D compares the input password input by the input sec- 
tion 3 with the power-on passwords stored in the pass- 
word memory 2D, and returns a response to the CPU 
1 D after the password checking. When it is detected 
from the response that the input password has been ac- 
cepted, the CPU 1 D continues the following process and 
then starts the system control for performing a data 
processing according to an application program. 
[0193] In an operation lock state, only the password 
is allowed to be key-input. A string of password charac- 
ters immediately before [Enter] key is pressed is stored 
in an input buffer, and the other key-input is ignored. Si- 
multaneously, the display screen is cleared. 
[0194] When a password is input in an operation lock 
state, this input state is noticed to the CPU 1D, and the 
CPU 1 D issues an operation lock unlocking command 
(operation lock password mode command). 
[0195] When the CPU 1 D issues the command, the 
password checking section 4D compares the password 
input by the input section 3D with the operation pass- 
words stored in the password memory 2D, and returns 
a response to the CPU 1 D after the password checking. 
When it is detected from the response that the input 
password has been accepted, the CPU 1 D unlocks the 
operation lock, thereby permitting the computer system 
to be used. 

[01 96] As described above, since the power-on pass- 
words for use in the power-on password check and the 
operation passwords for use in the operation lock un- 
locking password check can be independently set in the 
password memory 2D, an operability (high availability) 
is improved, and the reliability of the security function is 
also improved. 

[0197] Regarding the fourth essential construction, 
the operation of the portable computer will be described 
in detail. 

[01 98] In the case of the operation lock, an instant se- 
curity (an operation lock in this case) prompt is noticed 
from the keyboard controller (KBC) 30 to the CPU 21 by 
the above-described SMI process by operating hot keys 
(Fn + Fl) for an instant security during active application, 
and the lock is executed under the control of the CPU 
21 according to the notice. 

[0199] The keyboard (KB) 51 and key-input of an ex- 
ternal keyboard are ignored in the operation lock state, 
and a PS/2 mouse 52 is disabled. In this case, the key- 
board controller (KBC) 30 accepts the key-input, so as 
to enable for inputting the password, but inhibits to out- 
put to the system bus (ISC-BUS) 11. Simultaneously, 
display data on the LCD panel 49 and an external CRT 
are cleared. In this case, the VGA controller 32 and the 
video memory (VRAM) 33 can be accessed. 
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[0200] When the hot keys (Fn + Fl) are operated for 
an instant security in the operation lock state, the instant 
security (unlocking the operation lock in this case) 
prompt is noticed from the keyboard controller (KBC) 30 
to the CPU 21 , and the CPU 21 issues an operation lock s 
password mode command according to the notice 
(steps S50 to S52 in Fig. 13). 
[0201] The keyboard controller (KBC) 30 queues, 
when receiving the operation lock password mode com- 
mand, the password inputting. 
[0202] When a password character string is input from 
the keyboard (KB) 51 and the [Enter] key is pressed after 
the characters are input, the keyboard controller (KBC) 
30 recognizes the input of the passwords, and com- 
pares to collate the input passwords to entered pass- 
words stored in the EEPROM 29, i.e., the operation 
passwords in this case (steps S53 to S56 in Fig. 13). 
[0203] In this case, as shown in Fig. 6, four cases at 
the maximum can be set and entered as user' operation 
passwords to the EEPROM 29 accessed by the key- 
board controller (KBC) 30, and the registered password 
is compared with the input password. If the operation 
passwords are not registered, the power-on passwords 
are to be compared with the input password. 
[0204] In the case of checking the passwords in this 
instance, the input password is sequentially compared 
from the first (#1) entered operation passwords stored 
in the EEPROM 29. 

[0205] When the passwords are coincident in the 
above case of checking the passwords, a response of 
unlocking the operation lock (a coincident password lo- 
cation in the EEPROM 29 as data and "00h° as status 
in the actual case) is returned, and the password control 
command process is finished (in step S56 in Fig. 13). 
[0206] If the noncoincidence is detected, inputting of 
the password is requested again. 
[0207] As described above, the power-on passwords 
for use in the power-on password check and the oper- 
ation passwords for use in the operation lock unlocking 
password check can be independently set in the EEP- 
ROM 29, an operability (availability) can be thereby im- 
proved, and the reliability of the security function is also 
improved. 

[0208] A fifth essential construction of the portable 
computer will be described below. Fig. 1 4 shows the fifth 
essential construction. 

[0209] The fifth essential construction is character- 
ized in that the portable computer restarts an interrupted 
data processing the display screen after the input pass- 
word is accepted by comparing it with the password 
saved at the time of power-off. 
[0210] As shown in Fig. 1 4, the portable computer in- 
cludes a CPU 1 E, a password memory 2E, an input sec- 
tion (KB) 3E, and a password checking section 4E. 
[021 1] In Fig. 1 4, the CPU 1 E controls overall system 
and has a function of performing a suspension process 
and a resume process. The password memory 2E 
stores a plurality of registered passwords. The input 



section (KB) is used for inputting a password (a string 
of password characters). The password checking sec- 
tion 4E performs a password checking on the password 
input by the input section 3E, under the control of the 
CPU 1 E. In a combination of a resume mode and a pass- 
word check mode, the CPU 1 E specifies that one of the 
registered passwords stored in the password memory 
2E, and the password checking section 4E checks 
whether the input password coincides with the specified 
one of the registered passwords. On the other hand, in 
a ordinary password check mode excluding the resume 
mode, the password checking section 4E checks wheth- 
er the input password coincides with any one of the reg- 
istered passwords stored in the password memory 2E. 
[0212] In the construction described above, the CPU 
1 E performs the suspension process at the time of pow- 
er-off in the combination of the resume mode and the 
password check mode and the resume process at the 
time of power-on in the combination of the resume mode 
and the password check mode. A password checking is 
performed in the resume process. In the suspension 
process, the CPU 1 E interrupt a data processing ac- 
cording to an application program, obtains from the 
password checking section 4E the number data (pass- 
word #) designating that one of the registered pass- 
words stored in the password memory 2E which coin- 
cides with the password input during the previous pass- 
word checking performed for starting the data process- 
ing, and saves the number data along with state data of 
the interrupted data processing in a nonvolatile saving 
memory (e.g., system memory 23 in Fig. 2). In the 
resume process, the CPU 1 E reads the number data 
stored in the saving memory and supplies it in the form 
of a command parameter to the password checking sec- 
tion 4E. The password checking section 4E checks 
whether an password input be the input section 3E co- 
incides with one of the registered passwords specified 
by the number data, and returns a response to the CPU 
1E after the password checking. When it is detected 
from the response that the input password coincides 
with the specified password. The CPU 1E restores the 
saved state data to restart the data processing from the 
point As described above, when the system power 
source is switched on in a resume mode, the password 
checking section 4E checks whether the input password 
coincides with the registered password specified by the 
data saved at the time of the suspension process. The 
CPU 1 E restarts the data processing from the interrupt- 
ed point after the input password has been accepted. 
Therefore, it is possible to prevent a leakage of informa- 
tion and inconvenience of losing the state of the inter- 
rupted data processing by a third person. 
[0213] Regarding the fifth essential construction, the 
operation of the portable computer will be described in 
detail. The CPU 1 E, password memory 2E, input section 
3E, and password checking section 4E shown in Fig. 14 
correspond to the CPU 21 , EEPROM 29, keyboard 51 , 
and keyboard controller 30 shown in Fig. 2. 
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[0214] In the suspension process performed to inter- 
rupt a data processing, the CPU 21 saves the password 
# obtained as a command parameter from the keyboard 
controller 30 in a saving area of the battery-backup sys- 
tem memory 23. 

[021 5] When the system power source is switched on 
in the resume mode, the CPU 21 resumes the display 
screen in the resume process performed to restart the 
interrupted data processing, and temporarily saves the 
resumed screen in a predetermined area of the system 
memory 23. Further, the CPU 21 issues a power-on 
password mode command (password input command) 
with the password # as parameter at the time of sus- 
pending to the keyboard controller (KBC) 30 (steps S61 , 
S63 in Fig. 15). 

[0216] Then, the CPU 21 reads the password input 
requesting message previously stored in the BI- 
OS-ROM 25 instead of the resumed screen, sends it to 
the VGA controller 32, and displays the password input 
window according to the password input requesting 
message on the LCD panel 49. 
[0217] The keyboard controller (KBC) 30 requests, 
when receiving the power-on password mode command 
(password input command) issued from the CPU 21 , the 
password input from the keyboard (KBC) 51 (steps S71 
toS74 in Fig. 16). 

[0218] When the passwords are key-input on the 
password input window, the keyboard controller (KBC) 
30 accesses the EEPROM 29, checks whether the input 
password coincides with the registered password spec- 
ified by the parameter (passwords #) of the command 
(steps S75 to S77 in Fig. 16). 
[021 9] When the coincidence is detected in the pass- 
word checking, a response of the password coincidence 
(data/status) is returned to the CPU 21 . More specifical- 
ly, "coincident password location" as data and °00h (nor- 
mal end)" as status are transmitted to the CPU 21 
through the communication register of the status LCD 
control gate array (SLDCCNGA) 26 (step S78 in Fig. 
16). 

[0220] The CPU 21 saves, when receiving the re- 
sponse of the password coincidence, the response in 
the saving area of the system memory 23 (step S66 in 
Fig. 15). Thereafter, the CPU 21 continues the normal 
resume process, displays the resumed screen instead 
of the password input window, enables for key-inputting 
of the keyboard (KB) 51 in the restarted data processing. 
[0221] When the resume mode is not set (resume is 
off), the CPU 21 issues a power-on password mode 
command for not specifying the passwords (i.e., having 
no parameter) (password input command) to the key- 
board controller (KBC) 30 (step S62 in Fig. 15). 
[0222] In this case, the password input during the 
password checking performed by the keyboard control- 
ler (KBC) 30 is sequentially compared with all the reg- 
istered passwords stored in the EEPROM 29 (S79 to 
S81 in Fig. 16). In the case of password coincidence, a 
response of the coincidence passwords (data/status) is 



returned to the CPU 21 (step S78 in Fig. 1 6). Thereafter, 
the similar process is executed. 
[0223] As described above, when the system power 
source is switched on in a resume mode, the keyboard 

s controller 30 checks whether the input password coin- 
cides with the registered password specified by the data 
saved at the time of the suspension process. The CPU 
21 restarts the data processing from the interrupted 
point after the input password has been accepted. 

10 Therefore, it is possible to prevent a leakage of informa- 
tion and inconvenience of losing the state of the inter- 
rupted data processing by a third person. 



15 Claims 

1 . A computer system comprising: 

input means (51) for inputting at least a pass- 
20 word; 

main processor means (21) for controlling the 
operation of the computer system to perform 
data processing; 

password control means (26, 28, 29, 30) includ- 
es ing: 

password memory means (29) holding one 
or more registered passwords, and 
sub-processor means (26, 28, 30) for 

30 checking whether a password input by said 

input means (51 ) coincides with anyone of 
the registered passwords held in said 
password memory means (29) and allow- 
ing the main processor means (21) to per- 

35 form the data processing when a password 

identical to one of the registered pass- 
words is input by said input means (51 ), 

said password control means (26, 28, 29,30) 
40 are adapted to prevent reading of said regis- 

tered password by direct access from said main 
processor means (21); 
characterized in that 

said sub-processor means is connected to said 
45 main processor means (21) via a system bus 

(11) and connected to said password memory 
means (29) via a memory bus (15) ; 
said sub-processor means (26, 28, 30) con- 
cealing said password memory means (29) 
so from said main processor means (21). 

2. A system according to claim 1 , wherein said sub- 
processor means includes restricting means (100, 
110) for restricting a functional range of the data 

55 processing based on the type of the registered 
password which coincides with the input password. 

3. A system according to claim 1 , wherein said pass- 
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word memory means includes a non-volatile mem- 
ory for storing one or more registered passwords.. 

4. A system according to claim 1 , wherein said sub- 
processor means includes means (26, 28, 30) for 
registering, updating, and deleting passwords in 
said password memory means (29). 

5. A system according to claim 1 , wherein said main 
processor means (21) includes set-up means for 
setting up a system configuration with respect to 
available functional modes and hardware resourc- 
es. 

6. A system according to claim 5, wherein said main 
processor means (21 ) includes means for supplying 
a password checking request to said sub-processor 
means (26. 28, 30) when a power source is 
switched on in a power-on password checking 
mode. 

7. A system according to claim 6, wherein said pass- 
word memory means includes a memory area (29) 
for storing one or more registered passwords along 
with the 'access right' data concerning the available 
hardware resources and respectively assigned to 
the registered passwords, said sub-processor 
means includes retrieving means (30, 205) for re- 
trieving from said password memory means (29) the 
access right data assigned to the password which 
coincides with the input password, and said pass- 
word control means includes configuration chang- 
ing means (100, 110) for changing the system con- 
figuration based on the access right data retrieved 
by said retrieving means (30, 205). 

8. A system according to claim 7, wherein said config- 
uration changing means includes security register 
means (100) for storing access right data retrieved 
by said retrieving means (30, 205), and logic means 
(110) for selectively disabling access to the hard- 
ware resources according to the access right data 
stored in said security register means (100). 

9. A system according to claim 7, wherein said sub- 
processor means includes means (26. 28, 30) for 
registering, updating, and deleting passwords in 
said password memory means (29). 

10. A system according to claim 5, wherein said system 
further comprises BIOS memory means (25) for 
storing a basic input and output system program for 
said main processor means (21 ), various peripheral 
devices (41 -45, 48) provided for the data process- 
ing, and said main processor means (21) being con- 
nected via said system bus (11) to hardware re- 
sources including said BIOS memory means (25) 
and said various peripheral devices (41 -45, 48). 



11. A system according to claim 10, wherein said vari- 
ous peripheral devices includes a hard disk drive 
(42), a floppy disk drive (45), a serial port (41), a 
printer port (43), and an IC card (48), selectively. 

5 

12. A system according to claim 1, wherein said mem- 
ory bus (1 5) is independent of said system bus (1 1 ). 

13. A system according to claim 12, wherein said sub- 
10 processor means includes a sub-processor for per- 
forming the password checking on an input pass- 
word, and control logic means (205) connected to 
said sub-processor (30) via an internal bus (13), for 
searching said password memory means (29) for a 

is registered password which coincides with the input 
password, and reporting the result of the search to 
said sub-processor (30), under the control of said 
sub-processor (30). 

20 14. A system according to claim 1 3, wherein said input 
means includes a keyboard (51 ) whose keys are se- 
lectively operated to input at least a password, and 
said sub-processor includes a keyboard control 
means (30) for sensing the keys of said keyboard 

25 (51 ) operated for inputting the password. 

15. A system according to claim 13, wherein said sub 
processor means includes communication register 
means (26) for temporarily storing a password 

30 checking request supplied from said main proces- 
sor means (21) and a password checking result 
supplied from said sub-processor {30). 

16. A system according to claim 5, wherein said system 
35 further comprises secondary power-supported dis- 
play memory means (33), for storing display data 
produced by said main processor means (21), dis- 
play means (49) for displaying the display data 
stored in said display memory means (33). second- 

*o any power-supported system memory means (23), 
for storing processing state data obtained when the 
data processing is interrupted, and said main proc- 
essor means (21 ) includes suspension means for 
interrupting the data processing and saving the 

45 processing state data in said system memory 
means (23) when a main power source is switched 
off in a resume mode, resume means for restoring 
the saved processing state data when the main 
power source is switched on in the resume mode, 

so and display inhibiting means for inhibiting the dis- 
play data stored in said display memory means (33) 
from being displayed before the data processing is 
permitted by said sub-processor means (26, 28, 
30). 

55 

17. A system according to claim 16, wherein said dis- 
play inhibiting means includes means for causing 
the display means (49) to be either a blank display 
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state or a non-operative state to inhibit the display 
data from being displayed. 

18. A system according to claim 16, wherein said dis- 
play inhibiting means includes saving means for 
temporarily moving the display data from said dis- 
play memory means (33) into said system memory 
means (23) to inhibit the display data from being dis- 
played. 

19. A system according to claim 18, wherein said main 
processor means (21) includes means for setting 
display data representing a password-input re- 
questing message into said display memory means 
(33) instead of the display data temporarily moved 
into said system memory means (23) by said saving 
means. 

20. A system according to claim 16, wherein said dis- 
play means (49) has a graphic display mode for dis- 
playing display data of a graphic form and a text dis- 
play mode for displaying display data of a text form, 
said display memory means (33) includes a first 
memory area for selectively storing all of the text- 
form display data and part of the graphic-form dis- 
play data and a second memory area for storing the 
remainder of the graphic-form display data, and 
said display inhibiting means includes display mode 
switching means for temporarily switching the dis- 
play means (49) from the graphic display mode to 
the text display mode to inhibit the graphic-form dis- 
play data stored in said display memory means (33) 
from being displayed. 

21. A system according to claim 20, wherein said main 
processor means (21) includes means for tempo- 
rarily saving the graphic-form display data stored in 
a portion of the first memory area of said display 
memory means (33) and setting text-form display 
data representing a password-input requesting 
message, in the portion of said first memory area, 
after the display mode of said display means (49) 
is switched to the text display mode by said display 
mode switching means. 

22. A system according to claim 1 , wherein said main 
processor means (21) includes operation lock 
means for locking and unlocking the operations of 
said input means (51) and other predetermined 
hardware resources during the data processing, the 
inputting of a password is excepted from the oper- 
ation lock on said input means (51), and said pass- 
word memory means (29) holds one or more sec- 
ond registered passwords in addition to the first reg- 
istered passwords to allow the unlocking of the 
locked operations when a password identical to one 
of the second registered passwords is input by said 
input means (51) during the operation lock. 



23. A system according to claim 22, wherein said pass- 
word memory means includes a non-volatile pass- 
word memory (29) for storing the first registered 
passwords with the second registered passwords 

5 each assigned to a corresponding one of said first 
registered passwords, and said sub-processor 
means includes checking means for checking 
whether a power-on password input by said input 
means (51 ) coincides with anyone of the first regis- 

w tered passwords in response to a password check- 
ing request supplied from said main processing 
means (21 ) prior to start of the data processing, and 
whether an operation password input by said input 
means (51 ) coincides with the second registered 

15 password assigned to the first registered password 
which is detected to coincide with the input power- 
on password, in response to a password checking 
request supplied from said main processing means 
(21) succeeding the operation lock. 

20 

24. A system according to claim 23, wherein said sub- 
processor means includes means for subjecting the 
first registered password which is detected to coin- 
cide with the input power-on password, to the oper- 

25 ation password checking in a case where no second 
registered password has been assigned to the de- 
tected first registered password. 

25. A system according to claim 6, wherein said system 
30 further comprises secondary power-supported sys- 
tem memory means (23), for storing processing 
state data obtained when the data processing is in- 
terrupted, said main processor means (21 ) includes 
suspend means for interrupting the data processing 

35 and saving the registered password which is detect- 
ed to coincide with an input password during the 
password checking necessary for allowing the data 
processing to proceed, along with the processing 
state data in said system memory means (23) when 

^0 a main power source is switched off in a resume 
mode, and resume means for restoring the saved 
processing state data when the main power source 
is switched on in the resume mode, and said sub- 
processor means includes checking means for 

45 checking whether an input password coincides with 
the registered password saved in said system mem- 
ory means (23), when a password checking request 
is supplied from said main processor means (21 ) in 
the resume mode. 

50 

26. A system according to claim 25, wherein the pass- 
word checking effected by said sub-processor 
means is set prior to the operation of said resume 
means. 

55 
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Patentanspruche 

1 . Computersystem mit: 

einem Eingabemittel (51) zum Eingaben min- 
destens eines Passworts, 
einem Hauptprozessormittel (21) zum Steuern 
des Betriebs des Compute rsystems zum 
Durchfuhren einer Datenverarbeitung; 
einem Passwortsteuermittel (26,28,29,30) mit: 

einem Passwortspeichermittel (29), das 
ein Oder mehrere registrierte Passworter 
halt; und 

einem Unterprozessormittel (26,28,30) 
zum Uberprufen, ob ein durch das Einga- 
bemittel (51) eingegebenes Passwort mit 
irgendeinem der registrierten Passworter 
ubereinstimmt, die in dem Passwortspei- 
chermittel (29) gehalten werden, und urn 
es dem Hauptprozessormittel (21) zu er- 
moglichen, die Datenverarbeitung durch- 
zufuhren, wenn ein zu einem der registrier- 
ten Passworter identisches Passwort 
durch das Eingabemittel (51) eingegeben 
wurde; 

wobei das Passwortsteuermittel 
(26,28,29,30) ausgestaltet ist, urn ein Lesen der re- 
gistrierten Passworter durch direkten Zugriff von 
dem Hauptprozessormittel (21) zu verhindern; 

dadurch gekennzeichnet, dass 

das Unterprozessormittel mit dem Hauptpro- 
zessormittel (21) uber einen Systembus (11) und 
mit dem Passwortspeichermittel (29) uber einen 
Speicherbus (15) verbunden ist; 

wobei das Unterprozessormittel (26,28,30) 
das Passwortspeichermittel (29) vor dem Hauptpro- 
zessormittel (21) verbirgt. 

2. System nach Anspruch 1, bei dem das Unterpro- 
zessormittel ein Beschrankungsmittel (100,110) 
zum Beschranken eines Funktionsbereichs der Da- 
tenverarbeitung beruhend auf der Art des registrier- 
ten Passworts enthalt, das mit dem eingegebenen 
Passwort ubereinstimmt. 

3. System nach Anspruch 1 , bei dem das Passwort- 
speichermittel einen nicht-fluchtigen Speicher zum 
Speichem eines Oder mehrerer registrierten/regi- 
strierter Passwort/Passwdrter enthalt. 

4. System nach Anspruch 1 , bei dem das Unterpro- 
zessormittel Mittel (26,28,30) zum Registrieren, 
Auffrischen und Loschen von Passwortern in dem 
Passwortspeichermittel (29) enthalt. 

5. System nach Anspruch 1 , bei dem das Hauptpro- 



zessormittel (21) ein Set-up-Mittel zum Einstellen 
einer System konfigu ration beziiglich moglicher 
funktionaler Modi und Hardware- Resourcen ent- 
halt. 

5 

6. System nach Anspruch 5, bei dem das Hauptpro- 
zessormittel (21) Mittel zum Zufuhren einer Pass- 
wortuberprufungsanfrage an das Unterprozessor- 
mittel (26,28,30) enthalt, wenn in einem Power-on- 

10 PaBwortuberprufungsmodus eine Leistungsquelle 
angeschaltet wird. 

7. System nach Anspruch 6, bei dem das Passwort- 
speichermittel einen Speicherbereich (29) zum 

15 Speichern eines Oder mehrerer registrierter Pass- 
worter zusammen mit "Zugriffsrechf-Daten beziig- 
lich der zuganglichen Hardware- Resourcen, die je- 
weils den registrierten Passwortern zugeordnet 
sind, wobei das Unterprozessormittel Wiederher- 

20 stellungsmittel (30, 205) enthalt, urn aus dem Pass- 
wortspeichermittel (29) die Zugriffsrecht-Daten wie- 
derherzustellen, die dem Passwort zugeordnet 
sind, das mit dem eingegebenen Passwort uberein- 
stimmt, und wobei das Passwortsteuermittel ein 

25 Konfigurationsanderungsmittel (100,110) zum An- 
dern der Systemkonfiguration beruhend auf den 
Zugriffsrecht-Daten enthalt, die von dem Wieder- 
herstellungsmittel (30,205) wiederhergestellt wur- 
den. 

30 

8. System nach Anspruch 7, bei dem das Konfigurati- 
onsanderungsmittel ein Sicherheitsregistriermittel 
(100) zum Speichern von Zugriffsrecht-Daten, die 
von dem Wiederherstellungsmittel (30,205) wieder- 

35 hergestellt wurden, und Logikmittel (110) enthalt, 
urn selektiv den Zugriff auf Hardware-Resourcen 
entsprechend den Zugriffsrecht-Daten zu sperren, 
die in dem Sicherheitsregistermittel (100) enthalten 
sind. 

40 

9. System nach Anspruch 7, bei dem das Unterpro- 
zessormittel Mittel zum Registrieren, Auffrischen 
und Loschen von Passworter in dem Passwortspei- 
chermittel (29) enthalt. 

45 

10. System nach Anspruch 5, bei dem das System des 
weiteren ein BlOS-Speichermittel (25) zum Spei- 
chern eines Basic-lnput/output-Systemprogramms 
fur den Hauptprozessor 21) enthalt, wobei mehrere 

50 periphere Vorrichtungen (41-45, 48) fur die Daten- 
verarbeitung vorgesehen sind, und wobei das 
Hauptprozessormittel (21) uber den Systembus 
(11) mit Hardware-Resourcen einschlieBlich dem 
BlOS-Speichermittel (25) und den mehreren peri- 

55 pheren Vorrichtungen (41-45, 48) verbunden ist. 

11. System nach Anspruch 10, bei dem die verschie- 
denen peripheren Vorrichtungen ein Festplatten- 
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laufwerk (42), ein Floppy- Disk-Laufwerk (45), einen 
seriellen Anschluss (41), einen Druckeranschluss 
(43) bzw. eine IC-Karte (48) enthalten. 

1 2. System nach Anspruch 1 , bei dem der Speicherbus s 
(15) unabhangig vom Systembus (11) ist. 

13. System nach Anspruch 12, bei dem das Unterpro- 
zessormittel einen Unterprozessor zum Durchfuh- 

ren der Passwortuberprufung eines eingegebenen 10 
Passworts und ein Steuerlogikmittel (205), das mit 
dem Unterprozessor (30) uber einen internen Bus 
(13) verbunden ist, enthalt, urn das in dem Pass- 
wortspeichermittel (29) nach einem reglstrierten 
Passwort zu suchen, das mit dem eingegebenen 15 
Passwort ubereinstimmt, und urn das Ergebnis der 
Suche an den Unterprozessor (30) unter der Steue- 
rung des Unterprozessors (30) zu berichten. 

14. System nach Anspruch 13, bei dem das Eingabe- 20 
mittel eine Tastatur (51) enthalt, deren Tasten je- 
weils zur Eingabe von zumindest einem Passwort 
betatigt werden, und wobei das Unterprozessormit- 

tel ein Tastatursteuerungsmittel (30) zum Abfuhlen 
der Tasten der Tastatur (51 ) enthalt, die zum Einge- 25 
ben des Passworts betatigt werden. 

15. System nach Anspruch 13, bei dem das Unterpro- 
zessormittel ein Kommunikationsregistermittel (26) 
zum vorubergehenden Speichern einer Passwort- 30 
uberprufungsanfrage, die von dem Hauptprozes- 
sormittel (21) zugefuhrt wurde, und des Passwort- 
uberprufungsergebnisses, das von dem Unterpro- 
zessor (30) zugefuhrt wurde, enthalt. 

35 

16. System nach Anspruch 5, bet dem das System des 
weiteren enthalt: sekundare Leistungsunterstut- 
zungs-Anzeigespeichermittel (33) zum Speichern 
von Anzeigedaten, die von dem Hauptprozessor 
(21) erzeugt werden, ein Anzeigemittel (49) zum *o 
Anzeigen der Anzeigedaten, die in dem Anzeige- 
speichermittel (33) gespeichert sind, sekundare 
Leistungsunterstutzungs-Systemspeichermittel 

(23) zum Speichern von Verarbeitungszustandsda- 
ten, die erhalten werden, wenn die Datenverarbei- <s 
tung unterbrochen wurde, und wobei das Hauptpro- 
zessormittel (21) enthalt: ein Suspensionsmittel, 
urn die Datenverarbeitung zu unterbrechen und die 
Verarbeitungszustandsdaten in dem Systemspei- 
chermittel (23) zu sichern, wenn eine Hauptlei- so 
stungsquelle in einem Wiederherstellungsmodus 
abgeschaltet wird, ein Wiederherstellungsmitteln 
zum Wiederherstellen der gesicherten Verarbei- 
tungszustandsdaten, wenn die Hauptleistungs- 
quelle in dem Wiederherstellungsmodus ange- 55 
schaltet wird, und ein Anzeigeverhinderungsmitteln 
zum Verhindern der Anzelge von in dem Anzeige- 
speichermittel (33) gespeicherten Daten gegen- 



uber einer Anzeige, bevor die Datenverarbeitung 
von dem Unterprozessormittel (26,28,30) erlaubt 
wird. 

17. System nach Anspruch 16, bei dem das Anzeige- 
verhinderungsmittel Mittel enthalt, urn das Anzeige- 
mittel (49) zu veranlassen, entweder einen leeren 
Bildschirmzustand Oder einen Nicht-Betriebszu- 
stand anzuzeigen, urn zu verhindern, dass Anzei- 
gedaten angezeigt werden. 

18. System nach Anspruch 16, bei dem das Anzeige- 
verhinderungsmittel Sicherungsmittel enthalt, urn 
vorubergehend die Anzeigedaten aus dem Anzei- 
gespeichermittel (33) in dem Systemspeichermittel 
(23) zu sichern, urn zu verhindern, dass die Anzei- 
gedaten angezeigt werden. 

19. System nach Anspruch 18, bei dem das Hauptpro- 
zessormittel (21) Mittel enthalt, urn die Anzeigeda- 
ten, die eine Passworteingabe-Anforderungsmittei- 
lung darstellen, in das Anzeigespeichermittel (33) 
anstelle der Anzeigedaten zu setzen, die voruber- 
gehend in dem Systemspeichermittel (23) durch 
das Sicherungsmittel gespeichert sind. 

20. System nach Anspruch 16, bei dem das Anzeige- 
mittel (49) einen Grafikanzeigemodus zum Anzei- 
gen von Anzeigedaten in einer Grafikform und ei- 
nen Textanzeigemodus zum Anzeigen von Anzei- 
gedaten in einer Textform enthalt, wobei das Anzei- 
gespeichermittel (33) einen ersten Speicherbereich 
zum selektiven Speichern allerTextformanzeigeda- 
ten und eines Teils der Grafikform anzeigedaten 
enthalt, und einen zweiten Speicherbereich zum 
Speichern der vexbleibenden Grafikformanzeige- 
daten, und wobei das Anzeigeverhinderungsmittel 
ein Anzeigemodusumschaltmittel enthalt, urn vor- 
ubergehend das Anzeigemittel (49) von dem Grafi- 
kanzeigemodus zu dem Textanzeigemodus umzu- 
schalten, urn zu verhindern, dass die Grafikforman- 
zeigedaten, die in dem Anzeigespeichermittel (33) 
gespeichert sind, angezeigt werden. 

21. System nach Anspruch 20, bei dem das Hauptpro- 
zessormittel (21) Mittel enthalt, urn vorubergehend 
die Grafikformanzeigedaten zu speichern, die in ei- 
nem Abschnitt des ersten Speicherbereichs des 
Anzeigespeichermittels (33) gespeichert sind, und 
urn Textformanzeigedaten, die eine Passworteinga- 
be-Anforderungsmitteilung darstellen, in dem Ab- 
schnitt des ersten Speicherbereichs einzustellen, 
nachdem der Anzeigemodus des Anzeigemittels 
(49) in den Textanzeigemodus durch das Anzeige- 
modusumschaltmittel geschaltet wurde. 

22. System nach Anspruch 1 , bei dem das Hauptpro- 
zessormittel (21) Betriebsverriegelungsmittel ent- 
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halt, urn die Betriebsablaufe des Eingabemittels 
(51 ) und anderer vorgegeb,ener Hardware-Resour- 
cen wahrend der Datenverarbeitung zu sperren 
oder freizugeben, wobei die Eingabe eines Pass- 
worts am Eingabemittel (51) von der Betriebsver- 
riegelung erwartet wird, und wobei das Passwort- 
speichermittel (29) ein oder mehrere zweite regi- 
strierte Passworter zusatzlich zu den ersten regi- 
strierten Passwortern halt, um ein Entriegeln der 
verriegelten Betriebsablaufe zu erlauben, wenn ein 
Passwort, das identisch mit einem der zweiten re- 
gistrierten Passworter ist, durch das Eingabemittel 
(51) wahrend der Betriebsverriegelung eingegeben 
wird. 

23. System nach Anspruch 22, bei dem das Passwort- 
speichermittel einen nicht-fluchtigen Passwortspei- 
cher (29) zum Speichern der ersten registrierten 
Passworter zusammen den zweiten registrierten 
Passwortern enthalt, die jeweils einem entspre- 
chenden der ersten registrierten Passworter zuge- 
ordnet sind, und wobei das Unterprozessormittel 
Uberprufungsmittel zum Uberprufen enthalt, ob ein 
Power-on-Passwort, das von dem Eingabemittel 
(51) eingegeben wurde, mit einem der ersten regi- 
strierten Passworter in Abhangigkeit von einer 
Passwortuberprufungsanforderung ubereinstimmt, 
die von dem Hauptprozessormittel (21) getiefert 
wird, bevor die Datenverarbeitung beginnt, und ob 
ein Betriebspasswort, das von dem Eingabemittel 
(51) eingegeben wurde, mit dem zweiten registrier- 
ten Passwort, das dem ersten registrierten Pass- 
wort zugeordnet ist, ubereinstimmt, welches seiner- 
seits als ubereinstimmend mit dem Eingabe-Po- 
wer-on-Passwort detektiert wurde, in Abhangigkeit 
einer Passwortiiberprufungsanfrage, die von dem 
Hauptprozessormittel (21) folgend die Betriebsver- 
riegelung angegeben wurde. 

24. System nach Anspruch 23, bei dem das Unterpro- 
zessormittel Mittel enthalt, um das erste registrierte 
Passwort, das als ubereinstimmend mit dem Einga- 
be-Power-on-Passwort detektiert wurde, in die Be- 
triebspasswortuberprufung einzugeben, in einem 
Fall, in dem kein zweites registriertes Passwort dem 
detektierten ersten registrierten Passwort zugeord- 
net ist. 

25. System nach Anspruch 6, bei dem das System des 
weiteren sekundare Leistungsunterstutzungssy- 
stem-Speichermittel (23) zum Speichern von Ver- 
arbeitungszustandsdaten enthalt, die erhalten wur- 
den, wenn die Datenverarbeitung unterbrochen 
wurde, wobei das Hauptprozessormittel (21) Unter- 
brechungsmittel zum Unterbrechen der Datenver- 
arbeitung und zum Sichern des registrierten Pass- 
worts enthalt, das als ubereinstimmend mit dem 
Eingabepasswort wahrend der Passwortuberpru- 



fung detektiert wurde, die zum Freigeben des Fort- 
setzens der Datenverarbeitung erforderlich ist, zu- 
sammen mit den Verarbeitungszustandsdaten in 
dem Systemspeichermitt (23), wenn eine Hauptlei- 
s stungsquelle in einem Wiederherstellungsmodus 
ausgeschaltet wird, und mit Wiederherstellungsmit- 
teln zum Wiederherstellen der gesicherten Verar- 
beitungszustandsdaten, wenn die Hauptleistungs- 
quelle in dem Wiederherstellungsmodus ange- 
10 schaltet wird, und wobei das Unterprozessormittel 
Uberprufungsmittel enthalt, um zu uberprufen, ob 
ein eingegebenes Passwort mit dem registrierten 
Passwort ubereinstimmt, das in dem Systemspei- 
chermittel (23) gespeichert ist, wenn eine Pass- 
es wortuberprufungsanfrage von dem Hauptprozes- 
sormittel (21) in dem Wiederherstellungsmodus ge- 
liefert wird. 

26. System nach Anspruch 25, bei dem die Passwort- 
20 uberprufung, die von dem Unterprozessormittel 
ausgefuhrt wird, vor dem Betrieb des Wiederher- 
stellungsmittels eingestellt wird. 



25 Revendications 

1 . Systeme d'ordinateur comprenant : 

un moyen d'entr£e (51) pour entrer au moins 
30 un mot de passe ; 

un moyen de processeur principal (21) pour 
commander le fonctionnement du systeme 
d'ordinateur pour realiser un traitement de 
donnees ; 

35 un moyen de commande de mot de passe (26, 

28, 29, 30) incluant : 

un moyen de memoire de mot de passe 
(29) qui contient un ou plusieurs mots de 

40 passe enregistres ; et 

un moyen de sous-processeur (26, 28, 30) 
pour verifier si un mot de passe qui est en- 
tr£ par ledit moyen d'entree (51) coincide 
ou non avec Tun quelconque des mots de 

45 passe enregistres qui sont contenus dans 

ledit moyen de m£moire de mot de passe 
(29) et pour permettre au moyen de pro- 
cesseur principal (21) de realiser un traite- 
ment de donn£es lorsqu'un mot de passe 

50 qui est identique a Tun des mots de passe 

enregistres est entre par ledit moyen d'en- 
tree (51), 

ledit moyen de commande de mot de pas- 
se (26, 28, 29, 30) est adapte pour empe- 
55 cher une lecture dudit mot de passe enre- 

gistre au moyen d'un accfcs direct depuis 
ledit moyen de processeur principal (21), 
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se inclut un moyen de modification de configuration 
(100, 110) pour modifier la configuration systeme 
sur la base des donnees de droit d'acces qui sont 
retrouv§es par ledit moyen de recherche (30, 205). 

5 

8. Systeme selon la revendication 7, dans lequel ledit 
moyen de modification de configuration inclut un 
moyen de registre de securite (100) pour stocker 
des donnees de droit d'acces qui sont retrouvees 

w par ledit moyen de recherche (30, 205), et un 
moyen logique (110) pour invalider de facon selec- 
tive un acces aux ressources en termes de compo- 
sants materiels conform6ment aux donnees de 
droit d'acces qui sont stockees dans ledit moyen de 

15 registre de securite (100). 

9. Systeme seion la revendication 7, dans lequel ledit 
moyen de sous-processeur inclut un moyen (26, 28, 
30) pour enregistrer, mettre a jour et supprimer des 

20 mots de passe dans ledit moyen de memoire de mot 
de passe (29). 



caracterise en ce que : 

ledit moyen de sous-processeur est connecte 
audit moyen de processeur principal (21 ) via un 
bus ssteme (11) et est connecte audit moyen 
de memoire de mot de passe (29) via un bus 
de memoire (15), 

ledit moyen de sous-processeur (26, 28, 30) 
masquant ledit moyen de memoire de mot de 
passe (29) par rapport audit moyen de proces- 
seur principal (21). 

2. Systeme selon la revendication 1 , dans lequel ledit 
moyen de sous-processeur inclut un moyen de res- 
triction (100, 110) pour restreindre une plage fonc- 
tionnelle du traitement de donnees sur la base du 
type de mot de passe enregistre qui coincide avec 
le mot de passe d'entree. 

3. Systeme selon la revendication 1 , dans lequel ledit 
moyen de memoire de mot de passe inclut une me- 
moire non volatile pour stocker un ou plusieurs mots 
de passe enregistres. 

4. Systeme selon la revendication 1 , dans lequel ledit 
moyen de sous-processeur inclut un moyen (26, 28, 
30) pour enregistrer, mettre k jour et supprimer des 
mots de passe dans ledit moyen de memoire de mot 
de passe (29). 

5. Systeme selon la revendication 1 , dans lequel ledit 
moyen de processeur principal (21 ) inclut un moyen 
d'instau ration pour instaurer une configuration sys- 
teme en relation avec des modes fonctionnels dis- 
ponibles et avec des ressources disponibles en ter- 
mes de composants materiels. 

6. Systeme selon la revendication 5, dans lequel ledit 
moyen de processeur principal (21 ) inclut un moyen 
pour appliquer une requete de verification de mot 
de passe sur ledit moyen de sous-processeur (26, 
28, 30) lorsqu'une source de puissance est commu- 
tee dans I'etat d'activation dans un mode verifica- 
tion de mot de passe d'activation. 

7. Systeme selon la revendication 6, dans lequel ledit 
moyen de memoire de motde passe inclut une zone 
de memoire (29) pour stocker un ou plusieurs mots 
de passe enregistres en association avec les don- 
nees de droit d'acces concernant les ressources 
disponibles en termes de composants materieis et 
respectivement assignees aux mots de passe en- 
registres, ledit moyen de sous-processeur inclut un 
moyen de recherche (30, 205) pour retrouver, a. par- 
tir dudit moyen de memoire de mot de passe (29), 
les donnees de droit d'acces qui sont assignees au 
mot de passe qui coincide avec le mot de passe 
entre, et ledit moyen de commande de mot de pas- 



10. Systeme selon la revendication 5, dans ledit syste- 
me comprend en outre un moyen de memoire BIOS 

25 (25) pour stocker un programme systeme d'entree 
et de sortie de base pour ledit moyen de processeur 
principal (21), divers dispositifs peripheriques 
(41-45, 48) qui sont pr6vus pour le traitement de 
donnees, et ledit moyen de processeur principal 

30 (21) est connecte via ledit bus systeme (11) k des 
ressources en termes de composants materiels in- 
cluant ledit moyen de memoire BIOS (25) et lesdits 
divers dispositifs peripheriques (41-45, 48). 

35 11. Systeme selon la revendication 1 0, dans lequel les- 
dits divers dispositifs peripheriques incluent une 
unit6 de disque dur (42), une unite de disque souple 
(45), un port serie (41), un port d'imprimante (43) et 
une carte IC (48), de facon selective. 

40 

12. Systeme selon la revendication 1 , dans lequel ledit 
bus de m6moire (1 5) est independant dudit bus sys- 
teme (11). 

45 1 3. Systeme selon la revendication 1 2, dans lequel ledit 
moyen de sous-processeur inclut un sous-proces- 
seur pour realiser la verification de mot de passe 
sur un mot de passe d'entr6e et un moyen de logi- 
que de commande (205) qui est connecte audit 
so sous-processeur (30) via un bus interne (13) pour 
rechercher dans ledit moyen de memoire de mot de 
passe (29) un mot de passe enregistre qui coincide 
avec le mot de passe d'entree et pour rapporter le 
resultat de la recherche audit sous-processeur (30), 
55 sous la commande dudit sous-processeur (30). 

14. Systeme selon la revendication 1 3, dans lequel ledit 
moyen d'entree inclut un clavier (51) dont des tou- 
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ches sont actionn6es de fagon selective pour entrer 
au moins un mot de passe, et ledit sous-processeur 
inclut un moyen de commande de clavier (30) pour 
d6tecter les touches dudit clavier (51 ) qui sont ac- 
tionn£es pour entrer le mot de passe. 

1 5. Systeme selon la revendication 1 3, dans iequel ledit 
moyen de sous-processeur Inclut un moyen de re- 
gistre de communication (26) pour stocker de fagon 
temporaire une requete de verification de mot de 
passe qui est appliqu6e depuis ledit moyen de pro- 
cesses principal (21) et un r6sultat de verification 
de mot de passe qui est applique depuis iedit sous- 
processeur (30). 

16. Systeme selon la revendication 5, dans Iequel ledit 
systeme comprend en outre un moyen de memoire 
d'affichage supports par alimentation secondaire 
(33) pour stocker des donnees d'affichage qui sont 
produites par ledit moyen de processeur principal 
(21), un moyen d'affichage (49) pour afficher les 
donnees d'affichage qui sont stockees dans ledit 
moyen de memoire d'affichage (33), un moyen de 
memoire systeme supports par alimentation secon- 
daire (23) pour stocker des donnees d'etat de trai- 
tement qui sont obtenues lorsque le traitement de 
donn6es est interrompu, et ledit moyen de proces- 
seur principal (21) inclut un moyen de suspension 
pour interrompre le traitement de donnees et pour 
sauvegarder les donnees d'etat de traitement dans 
ledit moyen de memoire systeme (23) lorsqu'une 
source de puissance principale est commutee dans 
i'etat desactive dans un mode reprise, un moyen de 
reprise pour restaurer les donnees d'etat de traite- 
ment sauvegardees lorsque la source de puissance 
principale est commutee dans retat active dans le 
mode reprise et un moyen d'inhibition d'affichage 
pour inhiber les donnees d'affichage qui sont stoc- 
kees dans ledit moyen de memoire d'affichage (33) 
de telle sorte qu'elles ne soient pas affichees avant 
que le traitement de donnees ne soit autorise par 
ledit moyen de sous-processeur (26, 28, 30). 

17. Systeme selon la revendication 16, dans Iequel ledit 
moyen d'inhibition d'affichage inclut un moyen pour 
faire en sorte que le moyen d'affichage (49) soit soit 
dans un etat d'affichage vierge, soit dans un etat 
non operant pour inhiber Paffichage de donnees afin 
qu'elles ne soient pas affichees. 

1 8. Systeme selon la revendication 1 6, dans Iequel ledit 
moyen d'inhibition d'affichage inclut un moyen de 
sauvegarde pour d6placer de fagon temporaire les 
donnees d'affichage depuis ledit moyen de memoi- 
re d'affichage (33) dans ledit moyen de memoire 
systeme (23) pour inhiber les donn6es d'affichage 
afin qu'elles ne soient pas affichees. 



19. Systeme selon la revendication 18, dans Iequel ledit 
moyen de processeur principal (21 ) inclut un moyen 
pour etablir des donn6es d'affichage qui represen- 
ted un message de requete d'entr6e de mot de pas- 
5 se dans ledit moyen de m6moire d'affichage (33) en 
lieu et place des donnees d'affichage deplacees de 
fagon temporaire dans ledit moyen de memoire sys- 
teme (23) par ledit moyen de sauvegarde. 

w 20. Systeme selon la revendication 1 6, dans Iequel ledit 
moyen d'affichage (49) pr6sente un mode affichage 
graphique pour afficher des donnees d'affichage 
d'une forme graphique et un mode affichage texte 
pour afficher des donnees d'affichage d'une forme 

is texte, ledit moyen de memoire d'affichage (33) in- 
clut une premiere zone de memoire pour stocker de 
fagon selective toutes les donnees d'affichage de 
forme texte et une partie des donnees d'affichage 
de forme graphique et une seconde zone de me- 

20 moire pour stocker le reste des donnees d'affichage 
de forme graphique, et ledit moyen d'inhibition d'af- 
fichage inclut un moyen de commutation de mode 
d'affichage pour commuter de fagon temporaire le 
moyen d'affichage (49) depuis le mode affichage 

25 graphique sur le mode affichage texte afin d'inhiber 
les donnees d'affichage de forme graphique qui 
sont stockees dans ledit moyen de memoire d'affi- 
chage (33) afin qu'elles ne soient pas affichees. 

30 21 . Systeme selon la revendication 20, dans Iequel ledit 
moyen de processeur principal (21 ) inclut un moyen 
pour sauvegarder de fagon temporaire les donnees 
d'affichage de forme graphique qui sont stockees 
dans une partie de la premiere zone de memoire 

35 dudit moyen de memoire d'affichage (33) et pour 
etablir des donnees d'affichage de forme texte re- 
presentant un message de requete d'entree de mot 
de passe dans la partie de ladite premiere zone de 
memoire, apres que le mode affichage dudit moyen 

40 d'affichage (49) est commute dans le mode afficha- 
ge texte par ledit moyen de commutation de mode 
d'affichage. 

22. Systeme selon la revendication 1 , dans Iequel ledit 
45 moyen de processeur principal (21 ) inclut un moyen 
de blocage d'op6ration pour bloquer et debloquer 
les operations dudit moyen d'entree (51 ) et d'autres 
ressources predeterminees en termes de compo- 
sants materiels pendant le traitement de donnees, 
so I'entree d'un mot de passe faisant exception au ni- 
veau du blocage d'operation sur ledit moyen d'en- 
tree (51 ), et ledit moyen de memoire de mot de pas- 
se (29) contient un ou plusieurs seconds mots de 
passe enregistres en plus des premiers mots de 
55 passe enregistres pour permettre le deblocage des 
operations bloqu6es lorsqu'un mot de passe qui est 
identique k I'un des seconds mots de passe enre- 
gistres est entre par ledit moyen d'entree (51 ) pen- 
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dant le blocage d'operation. 

23. Systeme selon la revendication 22, dans lequel ledit 
moyen de m6moire de mot de passe inclut une m6- 
moire de mot de passe non volatile (29) pour stac- 
ker les premiers mots de passe enregistres avec 
les seconds mots de passe enregistres dont chacun 
est assigne a I'un correspondant desdits premiers 
mots de passe enregistr6s, et ledit moyen de sous- 
processeur inclut un moyen de verification pour ve- 
rifier si une entree de mot de passe de mise en route 
par ledit moyen d'entree (51) coincide avec I'un 
quelconque des premiers mots de passe enregis- 
tres en reponse a une requete de verification de mot 
de passe qui est appliqu6e depuis ledit moyen de 
traitement principal (21) avant de demarrer le trai- 
tement de donnees, et si oui ou non un mot de pas- 
se d'operation qui est entre par ledit moyen d'entree 
(51 ) coincide avec le second mot de passe enregis- 
tre qui est assigne au premier mot de masse enre- 
gistre qui est detecte comme coincidant avec le mot 
de passe de mise en route d'entree, en r6ponse a 
une requete de verification de mot de passe qui est 
appiiquee depuis ledit moyen de traitement princi- 
pal (21) a la suite du blocage d'operation. 

24. Systeme selon la revendication 23, daps lequel ledit 
moyen de sous-processeur inclut un moyen pour 
soumettre le premier mot de passe enregistre qui 
est detecte comme coincidant avec le mot de passe 
de mise en route d'entree a la verification de mot 
de passe d'operation dans un cas ou aucun second 
mot de passe enregistre n'a ete assigne au premier 
mot de passe enregistre detecte. 

25. Systeme selon la revendication 6, dans ledit syste- 
me comprend en outre un moyen de memoire sys- 
teme supporte par alimentation secondaire (23) 
pour stacker des donnees d'etat de traitement qui 
sont obtenues lorsque le traitement de donnees est 
interrompu, ledit moyen de processeur principal 
(21) inclut un moyen de suspension pour interrom- 
pre le traitement de donnees et pour sauvegarder 
le mot de passe enregistre qui est detecte comme 
coincidant avec un mot de passe d'entree pendant 
la verification de mot de passe necessaire pour per- 
mettre au traitement de se derouler en association 
avec les donn6es d'etat de traitement dans ledit 
moyen de m6moire systeme (23) lorsqu'une source 
de puissance principale est commut6e dans retat 
d6sactiv6 dans un mode reprise et un moyen de re- 
prise pour restaurer les donn6es d'6tat de traite- 
ment sauvegardees lorsque la source de puissance 
principale est commutee dans retat active dans le 
mode reprise, et ledit moyen de sous-processeur 
inclut un moyen de verification pour verifier si oui 
ou non un mot de passe d'entree coincide avec le 
mot de passe enregistre qui est sauvegarde dans 
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ledit moyen de memoire systeme (23) lorsqu'une 
requete de verification de mot de passe est appii- 
quee depuis ledit moyen de processeur principal 
(21) dans le mode reprise. 

26. Systeme selon la revendication 25, dans lequel la 
verification de mot de passe qui est realis6e par le- 
dit moyen de sous-processeur est etablie avant le 
fonctionnement dudit moyen de reprise. 
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